Atheros 5212 and Wifi Exploits

[bburns at juniper.net (Burns Bryan)]

I've had decent luck doing custom packet generation using madwifi-ng  
drivers and lorcon as part of airpwn. In order to send arbitrary  
packets I have to create a new interface in monitor mode using the  
following command:

wlanconfig ath1 create wlandev wifi0 wlanmode monitor
ifconfig ath1 up

-Bryan

On Nov 14, 2006, at 11:46 AM, max moser wrote:

> Hi there,
>
> as far as i know, the madwifi-ng driver is not best choice for  
> arbitrary packet generation.
> Prism64/GT is the best choice for that. As far as i remember packet  
> generation on madwifi-ng has problems
> with not being able to completely control all fields in a packet.  
> (Sequences etc)
>
> Madwifi-old should be better but did not test it lately.
>
> Hope this helps. Btw i right now try to prepare a special iso of  
> BackTrack to demonstrate this attack. If you like i can
> post it here when i was successful.
>
> Greetings
>
> Max
>
> ---
>
> On Nov 14, 2006, at 7:56 PM, H D Moore wrote:
>
> > I haven't had any luck using lorcon with madwifi-ng (all testing is
> > performed with madwifi-old and a WPN511 Netgear PC card).
> >
> > -HD
> >
> > On Tuesday 14 November 2006 11:40, mat wrote:
> > > Im trying to get the daringphucball exploit to work with my Atheros
> > > 5212 card, but I am receiving this error.
> > >
> > > Unable to open proc device "/proc/sys/dev/ath1/rawdev", fopen: No  
> > > such
> > > file or directory