-
Aireplay-ng Hidden SSID deauth problem
Problem: unable to reveal hidden SSID
Steps Taken:
1. Airmon-ng to start up the monitoring interface
2. Started airodump-ng
---Ran into problem isolating the channel of the wireless AP
---had to first set the dump to scan all channels, then narroed it down to channel 5
Why does the dump show channel '-1'?
3. Once I now am capturing packets, I want deauth some clients, so they reconnect, revealing the SSID, and capturing the handshake
---Aireplay-ng deauth seems to need a beacon packet first but the problem is, a hidden SSID won't beacon out, how do I get around that?
---And I can't specify an ESSID because it's hidden...
---I checked, mon2 is fixed to channel 5 also and the dump is below:
---Also, for some reason all the Hidden SSID airodump shows has a power of '-1'
TERM1--------------
CH 5 ][ Elapsed: 48 mins ][ 2013-11-14 12:38
BSSID PWR RXQ Beacons #Data, #/s CH MB ENC CIPHER AUTH ESSID
00:25:00:FF:94:73 -1 0 0 2 0 128 -1 OPN <length: 0>
BSSID STATION PWR Rate Lost Frames Probe
00:25:00:FF:94:73 AA:52:DE:C6:33:E0 -74 0 - 6 2 30537
TERM2----------
aireplay-ng -a 00:25:00:FF:94:73 -0 10 mon2
12:10:13 Waiting for beacon frame (BSSID: 00:25:00:FF:94:73) on channel 5
12:10:23 No such BSSID available.
Please specify an ESSID (-e).
Let me know if you need anything else to help out. Thanks.
Last edited by polyphemus; 2013-11-16 at 15:24.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules