Wireless/Python: Difference between revisions

From charlesreid1
Line 11: Line 11:
==Scapy Approach: Mellow Out==
==Scapy Approach: Mellow Out==


The second way is to make things a lot easier for yourself, and let the [[Scapy]] Python library do all the parsing of information. You run airodump in the background to channel hop, then run Scapy to parse out all the information that's being collected. You still have to scan for targets and determine what attacks to run, but it makes information management a whole lot easier.
The second way: make things a lot easier for yourself, and let the [[Scapy]] Python library do all the parsing of information. Run airodump or similar in the background to make the wireless card channel hop. Run Scapy to parse out all the information that's being collected. (Details?) You still have to scan to find nearby devices/routers, but it makes information management a whole lot easier.


==Joe Pesci Approach: Besside-ng==
==Joe Pesci Approach: Besside-ng==

Revision as of 04:05, 16 January 2016

Approaches

There are a couple of different ways to do wireless attacks with Python.

The One Man Band Approach

The first way is sort of painful, or can overload your system: trying to find every wireless network, parsing out clients and access points, listening, identifying and counting packets and unique devices, and managing all of this information. Lots of moving parts. Very painful. Complicated. But you have fine-grained control over every detail.

You end up feeling like a one man band.

Scapy Approach: Mellow Out

The second way: make things a lot easier for yourself, and let the Scapy Python library do all the parsing of information. Run airodump or similar in the background to make the wireless card channel hop. Run Scapy to parse out all the information that's being collected. (Details?) You still have to scan to find nearby devices/routers, but it makes information management a whole lot easier.

Joe Pesci Approach: Besside-ng

The third way is least painful: besside-ng. besside-ng is like the Joe Pesci of the wireless attack world. Joe Pesci gets things done with a baseball bat. You give Joe Pesci a MAC number, and just sit back while Joe Pesci gets things done.

Components of Wireless Attacks

The other complication is that wireless attacks can take many forms. It might be listening, or it might be active. It might involve acting as an access point, or acting as a client. Each requires different tools and scripts. It's important to have a clear idea about what you want to do before you start scripting.

  • Listening
  • Attacking
  • Collating
  • Cracking

For scripts, see the Nosecleaner project on Github: https://github.com/charlesreid1/nosecleaner




Defcon.png
aircrack-ng
a suite of tools for wireless cracking.


Aircrack  · Category:Aircrack


aircrack-ng

Many Ways to Crack a Wifi: Cracking Wifi

Aircrack Benchmarking: Aircrack/Benchmarking

WEP Attacks with Aircrack: Aircrack/WEP Cracking

WPA Attacks with Aircrack: Aircrack/WPA Cracking

Aircrack Hardware: Aircrack/Packet Injection Testing

Harvesting Wireless Network Information


airodump-ng

Basic Usage of Airodump


Category:Security  · Category:Wireless  · Category:Passwords


Flags  · Template:AircrackFlag  · e



Retrieved from "https://charlesreid1.com/w/index.php?title=Wireless/Python&oldid=8762"