[DEV] Wireless Monitor Mode

LatinSuD · Jan 9, 2010

BCM4329 driver source code suggests that monitor mode is possible (for kismet_drone, WIDSs, etc).

http://forum.aircrack-ng.org/index.php?topic=6735.msg34733#msg34733

The idea is to modify wl_iw_set_mode(), and allow IW_MODE_MONITOR by setting these flags:
WLC_SET_MONITOR and maybe WLC_SET_PROMISC too.

Then test with tcpdump if anything changed.

overridex · Jan 10, 2010

Have you come across anything regarding injection with this driver/chip? Monitoring mode would be nice, but add packet injection to the mix and the Nexus one becomes a lean mean WEP cracking machine.

droiddrop · Jan 10, 2010

airo*-ng with gpsd sounds fun.

mer6 · Jan 10, 2010

overridex said:
Have you come across anything regarding injection with this driver/chip? Monitoring mode would be nice, but add packet injection to the mix and the Nexus one becomes a lean mean WEP cracking machine.

Confirmed. Damn would that be a seriously good feature for a phone. Wouldn't have to use the laptop then

mark925 · Jan 10, 2010

mer6 said:
Confirmed. Damn would that be a seriously good feature for a phone. Wouldn't have to use the laptop then

I would LOVE this. Hate having to drag the laptop around....

tetlee · Feb 6, 2010

I had a go at putting it into monitor mode within a debian Chroot but wasnt having any of it. No idea if its debian/driver/hardware thats stopping it.

Code:

tete@localhost:~$ sudo iwconfig eth0
eth0      IEEE 802.11-DS  ESSID:""  Nickname:""
          Mode:Managed  Frequency:2.412 GHz  Access Point: Not-Associated   
          Bit Rate:72 Mb/s   Tx-Power:32 dBm   
          Retry min limit:7   RTS thr:off   Fragment thr:off
          Encryption key:off
          Power Managementmode:All packets received
          Link Quality=5/5  Signal level=0 dBm  Noise level=0 dBm
          Rx invalid nwid:0  Rx invalid crypt:0  Rx invalid frag:0
          Tx excessive retries:0  Invalid misc:0   Missed beacon:0

tete@localhost:~$ sudo iwconfig eth0 mode Monitor
Error for wireless request "Set Mode" (8B06) :
    SET failed on device eth0 ; Invalid argument.

It wont give error when trying to swap into Ad-Hoc but then doesnt swap.

LatinSuD · Feb 10, 2010

It is about driver, you need to modify it.

If anyone is able to compile & run a compiled wifi driver I can try write a patch for enabling monitor mode.

nehctuk · Apr 3, 2010

bump

bump... just wondering

Imperial.mack · Apr 3, 2010

any word on aircrack suite working?

fleebailey33 · Apr 4, 2010

usually broadcom chips don't support it.

0Vw3 · Apr 5, 2010

fleebailey33 said:
usually broadcom chips don't support it.

Can't agree with that assert.

http://aircrack-ng.org/doku.php?id=compatibility_drivers

I'm waiting N1 to be released in my country so I can get one and start investigating.

blunden · Jul 2, 2010

Any news on this? Would truly be great.

ParMaster · Jul 2, 2010

deprecated

WarkerAnhaltRanger · Sep 10, 2010

fleebailey33 said:
usually broadcom chips don't support it.

That's not true, look at the b43 module .. it proves that the broadcom chips are capable of being set into monitor mode, the only thing you'll need is a firmware that is able to supports the monitor mode

bonkasnucca · Nov 17, 2010

sorry for the noob question but what does this accomplish..i see ppl posting not having to carry the laptop and got interested

gravufo · Nov 17, 2010

bonkasnucca said:
sorry for the noob question but what does this accomplish..i see ppl posting not having to carry the laptop and got interested

It would basically make our Nexus capable of injecting packets which would allow us to crack a WEP encryption on a secured network to obtain the key and then connect to that network and use the internet

Chopes · Nov 17, 2010

gravufo said:
It would basically make our Nexus capable of injecting packets which would allow us to crack a WEP encryption on a secured network to obtain the key and then connect to that network and use the internet

So any work on this been made since OP or is this still being thought about even? Status update would be great.

condi · Nov 23, 2010

hi guys,

bcm4329 is also in Desire Z, and Galaxy S I9000.
I posted here in galaxy dev thread,
but there is no further interest..

br
condi

ParMaster · Mar 23, 2011

deprecated

imfloflo · Mar 23, 2011

gravufo said:
It would basically make our Nexus capable of injecting packets which would allow us to crack a WEP encryption on a secured network to obtain the key and then connect to that network and use the internet

There is an app for that try looking for "penetrate" apps on market.

BTW someone need to compil new kernel and drivers files with this flags to test it

[DEV] Wireless Monitor Mode

Member

Member

Member

Senior Member

Senior Member

Member

Member

Member

Senior Member

Senior Member

Member

Senior Member

Member

New member

Senior Member

Senior Member

Senior Member

Senior Member

Member

Senior Member

Similar threads