- BackTrack 5 Wireless Penetration Testing Beginner's Guide
- Vivek Ramachandran
- 444字
- 2021-04-02 18:48:48
Time for acton – experimenting with your Alfa card
- Reboot your computer and do not connect your Alfa card to it yet.
- Once logged in, monitor the kernel messages using the
tailcommand:
- Insert the Alfa card, you should see something which resembles the following screenshot. This is the default regulatory settings applied to your card:
- Let's assume that you are based in the US. To change your regulatory domain to the US, we issue the command
iw reg set USin a new terminal:
- If the command is successful, we get an output as shown (in the following screenshot) in the terminal where we are monitoring /var/log/messages:
- Now try, changing the card to channel 11, it would work. But when you try changing it to channel 12, you get a error. This is because channel 12 is not allowed for use in the US:
- The same applies for power levels. The US only allows a maximum of 27dBm (500 milliwatts), so even though the Alfa card has an advertised power of 1 Watt (30 dBm), we cannot set the card to maximum transmit power:
- However, if we were in Bolivia, then we could transmit at a power of 1 Watt, as this is allowed there. As we can see, once we set the regulatory domain to the Bolivia—
iw reg set BO, we can change the card power to 30DMB or 1 Watt. We can also use channel 12 in Bolivia, which was disallowed in the US:
What just happened?
Every country has its own regulations for the use of the unlicensed wireless band. When we set our regulatory domain to a specific country, our card will obey the allowed channels and power levels specified. However, it is easy to change the regulatory domain of the card and force it to work on disallowed channels and to transmit at more than allowed power.
Have a go hero – exploring regulatory domains
Look at the various parameters you can set such as channel, power, regulatory domains, and so on. Using the iw series of commands on BackTrack. This should give you a firm understanding of how to configure your card when you are in different countries and need to change your card settings.
Pop quiz – WLAN packet sniffing and injection
- Which frame types are responsible for authentication in WLANs?
- Control
- Management
- Data
- QoS
- What is the name of the second monitor mode interface which can be created on
wlan0usingairmon-ng?Mon0Mon11MonMonb
- What is the filter expression to view all non-beacon frames in Wireshark?
!(wlan.fc.type_subtype == 0x08)wlan.fc.type_subtype == 0x08(no beacon)Wlan.fc.type == 0x08
推薦閱讀
- 四時風月繪:國風水墨CG插畫繪畫技法
- Joomla! 1.5 SEO
- Photoshop 平面廣告設計從入門到精通
- Midjourney AI案例實戰:繪本+動漫+插畫
- Excel公式、函數與圖表案例實戰從入門到精通(視頻自學版)
- Seam 2 Web Development: LITE
- Moodle Course Conversion: Beginner's Guide
- 金融精英PPT實操手冊:世界知名公司這樣展示研究報告
- Unity 3 Game Development Hotshot
- Instant GSON
- AutoCAD 2010 機械設計與制作技能基礎教程
- AI賦能Rhino產品造型創意設計(視頻教學版)
- Photoshop CS6 中文版從入門到精通
- 案例學:Photoshop電商美工設計
- 五筆打字全能一本通(全彩版)