WEPBuster – automate wireless assessment

WEPBuster is an additional support for tool aircrack-ng , this small utility was written for Information Security Professionals to aid in conducting  Wireless  Security  Assessment.  The program executes various utilities included in the  aircrack-ng suite, a set of tools for auditing wireless networks.

It is easy to install! There is no OS dependency. All you need is PERL. Thats one good thing that I like about this tool!

Some features:

Cracks all access points within the range in one go!!
Supports:
- Mac address filtering bypass (via mac spoofing)
- Auto reveal hidden SSID
- Client-less Access Point injection
- Shared Key Authentication
- WEP Decloacking (future version)
- whitelist (crack only APs included in the list)
- blacklist (do not crack AP if it’s included in the list)

Sample:

perl wepbuster

One small tool required for spoofing is a macchanger. You can get it here:

http://www.alobbs.com/macchanger

Setting to be changed in aircrack-ng

Modifications recommended in aircrack-ng are as follows:
The following modifications to the source and header file of the two
aircrack-ng utilities (aircrack-ng, airodump-ng), are not required but will
make the decryption of WEP key more accurate (in terms of number of IVs
needed in order to obtain the key.
1.) Instead of 5000, change PTW_TRY_STEP to 100 to make cracking more
accurate (in terms of number of IVs needed to crack the key)
Look for this line below in “aircrack-ng.h”
PTW_TRY_STEP #5000
2.) The script relies heavily on reading and parsing the .csv file output of
airodump-ng. As such, instead of airodump-ng waiting for 20 seconds before
writing the .csv text output, it is recommended that you make it 2 seconds.
If not changing this line below, you should set $airodumpwait to at least
more than 20 to avoid getting errors. A value of 23 should be safe.
Look for this line below in “airodump-ng.c”
if( time( NULL ) – tt1 >= 20)

Download wepbuster here

Related External Links

• The Right Side of Life » Rep. Paul Introduces Bill to Audit …
• Help Audit The Federal Reserve | Revellian Dot Com

• First TMPLAB Wireless Battle Mesh – April 11-12th 2009 @ tmplab …

• Wireless Security Camera System |

If you enjoyed this article, you might also like:

• June 4, 2010 -- Grimwepa: A WEP and WPA Password Cracker!
  Consider Grimwepa a front-end to many famous Wired Equivalent Privacy (WEP) and Wi-Fi Protected Acce...
• April 5, 2010 -- ubitack: A Toolkit for Wireless Penetration Tests!
  Ubitack tool automates some of the tasks you might need on a wireless penetration test or while you ...
• June 25, 2009 -- Keykeriki: The first open source wireless keyboard sniffer!
  We all know about keyloggers and  their various uses. But, then again, these keyloggers have some dr...
• September 2, 2010 -- INSECURE Magazine 27 is out!
  This is one of the interesting magazines - specially for information security world with latest upda...
• August 6, 2010 -- UPDATE: BackTrack 4 R1 BlackHat Edition!
  After being in production for almost 6 months and on time for a Black Hat, Vegas release, BackTrack ...
• June 8, 2010 -- o2consultants-sql.txt
  o2consultants suffers from a remote SQL injection vulnerability....
• June 7, 2010 -- rsakeymanager-sql.txt
  RSA Key Manager version 1.5.x suffers from a remote SQL injection vulnerability....
• June 6, 2010 -- indesign-overflow.txt
  Adobe InDesign CS3 INDD file handling local buffer overflow exploit....
• June 6, 2010 -- somplplayer_m3u.rb.txt
  This Metasploit module exploits a buffer overflow in Simple Open Music Player version 1.0. When the ...

Tagged as: BackTrack, security, wifi, Wireless, wireless security assesment, wpa