Video Tutorial: Installing Aircrack + Wicrawl on Ubuntu Linux
Aircrack-ng
Aircrack-ng is a set of tools for auditing wireless networks. These tools can recover 802.11 WEP and WPA-PSK keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools.
Last year i walked you through installing the Aircrack-ng suite on Ubuntu Linux.
We will be installing and using just part of the Aircrack-ng suite, airmon-ng. This will allow us to put our wireless card into "Monitor" mode.
Wicrawl
Wicrawl is a simple wi-fi (802.11x) Access Point auditor with a simple and flexible plugin architecture. The plugins allow us to find out useful information about an AP so we don’t have to manually check each access point. Plugins are implemented for existing common tools, and new plugins can be written in any language. Wicrawl is able to use multiple cards, and eventually will be able to use multiple computers.
The goal is to automate the tedious task of scanning wi-fi access points for interesting information. This can be a useful tool for penetration testers looking to “crawl” through massive numbers of APs looking for interesting data. Plugins will be everything from DHCP and nmap to aircrack or hooks to move a motorized directional antenna around.
The guys over at Midnight Research Labs stopped development back in 2007. Being a bit out-dated, it wouldn't compile on the latest Ubuntu without a couple tweeks. I replaced the entire source code in the Aircrack-ng plugin folder with the latest SVN (as of this post). I also had to add a header file to the discovery folder to help it compile.
I went ahead and tared up my folder with all of these edits so you can easily compile it on the latest Ubuntu Linux (9.10 as of this post).
In this video tuorial, i walk you through installing Aircrack-ng as well as Wicrawl.
1) Install dependences
# sudo apt-get install build-essential libxml-smart-perl libssl-dev libsqlite3-dev sqlite3 subversion iw
2) Grab the latest snapshot of Aircrack-ng
# sudo svn co http://trac.aircrack-ng.org/svn/trunk/ aircrack-ng
3) Change to the Aircrack-ng folder and build Aircrack-ng
# cd aircrack-ng
# sudo make sqlite=true
4) Install Aircrack-ng
# sudo make sqlite=true install
5) Put wireless interface into monitor mode
# sudo airmon-ng start wlan0
6) Test injection capability on your wireless card
(Note: Your wireless interface may be something other than wlan0, type iwconfig to confirm)
# aireplay-ng -9 mon0
You should see something like:
16:29:41 wlan0 channel: 4
16:29:41 Trying broadcast probe requests...
16:29:41 Injection is working!
If you dont see the above, you need to go patch your wireless driver to support injection.
Check the compatibility chart here.
7) Download Wicrawl
# wget http://www.timashley.me/files/wicrawl.tar.gz
8) Extract Wicrawl
# tar zxvf wicrawl.tar.gz
9) Change to wicrawl folder and build Wicrawl
# cd wicrawl
# sudo make
10) Install Wicrawl
# sudo make install
11) Run Wicrawl
Note: make sure you have a wireless interface in monitor mode (mon0)
# sudo wicrawl
12) Select your interfaces
Interfaces -> Use Interfaces -> wlan0
Interfaces -> Monitor Mode -> mon0
13) Choose plugins
Plugins -> Edit active plugins
14) Auto pwn
Wicrawl -> Start in Automatic Mode
Teh haps'
Thu, 02/02/2012 - 19:52
Tim tweeted "@ThatKevinSmith Happy groundhog day! What's your 60 second review of the movie "Groundhogs Day"? #LIVEfrombehind" 7:52pm#- Tim tweeted "Jay and Silent Bob get old! (@ Edwards Renaissance Stadium 14 for Kevin Smith: Live from Behind w/ 2 others) [pic]: http://t.co/0k3NsmV5" 7:37pm#
Mon, 01/30/2012 - 20:15
- Tim tweeted "I had the pleasure of driving a giant circle around LA during rush hour with uber sore legs." 8:15pm#
- Tim tweeted "Goggle tan FTW! :D" 11:16am#
Sat, 01/28/2012 - 12:38
- Tim tweeted "I'm at Mammoth Mountain Ski Resort (1 Minaret Rd, Mammoth Lakes) w/ 5 others http://t.co/SKvBroDM" 12:38pm#
Fri, 01/27/2012 - 21:46
- Tim tweeted "Mammoth bound!" 9:46pm#
- Tim tweeted "I think I like burritos more than pizza now O_o (@ Baja Fresh) http://t.co/FtMOoGu8" 1:17pm#
Thu, 01/26/2012 - 19:23
- Tim tweeted "Just saw a "Veggie TDI" emblem on the back of a Jetta :D I wonder if they had to take out the turbo for the conversion." 7:23pm#
- Tim tweeted "I just became the mayor of Candolyns Salon on @foursquare! http://t.co/El0GAvDM" 7:21pm#
- Tim tweeted "I love meetings where I come out with a bonus :D" 11:29am#
stop sudo'ing everything
- reply
Submitted by Anonymous on Sat, 06/12/2010 - 11:38.Have you come across this problem? I think i'm S.O.L :(
http://midnightresearch.com/wiki/index.php/Wicrawl_Card_Support
apcore: setMonitorMode() doesn't know how to enable monitoring on interface mon0
10:11:53 Trying broadcast probe requests...
10:11:53 Injection is working!
10:11:55 Found 1 AP
Starting wi-crawl...
Wicrawl execution command line: /usr/local/wicrawl/plugins/plugin-engine -i mon0,wlan1 -d /var/log/wicrawl -f wicrawl_discovery-1269241975.xml -P wicrawl_plugins-output-1269241975.xml -s 1269241975 -v 2 -p custom
[*] Loading Config from [/etc/wicrawl/wicrawl.conf]
DEBUG: setting madwifihack to 0
[**] Starting wicrawl version [0.4]
[*] Logging output to [/var/log/wicrawl/wicrawl_plugin-engine.log]
[*] Verbosity [2]
[*] Session ID [1269241975]
[*] Discovery log file is
[/var/log/wicrawl/wicrawl_discovery-1269241975.xml]
[*] Plugin ouput file is
[/var/log/wicrawl/wicrawl_plugins-output-1269241975.xml]
[**] Warning: no SSID/BSSID filter set, please limit your profile/plugins to safe plugins
[--] Loading profile... [/usr/local/wicrawl//profiles/custom.conf]
[-] Done loading profile.
[--] Loading plugins...
[!!] Can't find the configured plugin
(Trying /usr/local/wicrawl//plugins//plugin.conf)
[*] Added Plugin [Aircrack WEP cracking] to active plugins
[-] Done Loading plugins...
[-] Creating fifo file [/var/log/wicrawl/ipc] for IPC process
[*] IPC process [2525] spawned
[**] Executing Discovery:
[/usr/local/wicrawl//discovery/apcore -q -o /dev/null -I /var/log/wicrawl/ipc -w /var/log/wicrawl/wicrawl_pcap-1269241975-0.cap mon0]
Placing mon0 into monitor mode... nope
[!!!] Discovery stopped or died before we got any output
Verify your interface settings, and check logs
Also, probably want to verify you're in monitor mode
[!!] Interrupt received, cleaning up
[-] Killing discovery [2526]
[-] Child [-2526] was killed
[-] Killing IPC [2525]
[*] Children finished.
[**] Wicrawl Done.
Wicrawl is finished
Killing child [2521]
Child [2521] dead
Discovery and plugin-engine finished
- reply
Submitted by tim.gmz on Mon, 03/22/2010 - 00:58.Looks like you're not putting your card into monitor mode prior to using Wicrawl:
"Placing mon0 into monitor mode... nope
[!!!] Discovery stopped or died before we got any output
Verify your interface settings, and check logs
Also, probably want to verify you're in monitor mode"
- reply
Submitted by Tim Ashley on Mon, 03/22/2010 - 17:44.10:11:53 Trying broadcast probe requests...
10:11:53 Injection is working!
10:11:55 Found 1 AP
I had run airmon-ng start wlan1 to create the mon0 interface before I started. then ran the injection test which gave me the msg above.
- reply
Submitted by tim.gmz on Tue, 03/23/2010 - 00:10.wicrawl is shit I installed it on BT4 and put wlan0 to monitor mode which creates mon0
when I run it after setting active plugin and interfaces gives same message error and closes it it shit
you better tools like wepbuster , grimwepa or spoonwep2
they work perfectly ,especially good configured wepbuster it cracks very fast
whith just single one line command
- reply
Submitted by Anonymous on Sat, 06/26/2010 - 07:02.