raspberry-pi-monitor-mode
Dies ist eine alte Version des Dokuments!
Inhaltsverzeichnis
Raspberry Pi 3 B+ mit Wireless Monitor Mode Unterstützung aufsetzen
An diesem Artikel wird noch gearbeitet und aktuell sind Erfahrungen mit BRCM on-board und TP-Link „Archer“ T2UH veröffentlicht. Die Erfahrungen mit dem Alfa Stick folgen.
Image auf MicroSD Karte schreiben
rdisk4 wg. dem Macbook, die Nummer weicht auf anderen Systemen ab - also bitte darauf achten dass man nicht versehentlich eine falsche Platte/Karte überschreibt.
BennyE$ sudo dd if=2018-06-27-raspbian-stretch-lite.img of=/dev/rdisk4 bs=1024k Password: 1776+0 records in 1776+0 records out
Raspberry Pi einrichten
Kein rpi-update durchführen! Dadurch fehlen einige Dateien für den Kernel (Stichwort: /build Verzeichnis) und wir können keine eigene Firmware bauen!
sudo raspi-config -> Keyboard einstellen -> Interfacing -> SSH einschalten -> Land für die Wireless Schnittstelle festlegen (z.B. DE) sudo apt-get update && sudo apt-get upgrade root@raspberrypi:/home/pi# apt-get remove wpasupplicant root@raspberrypi:/home/pi# sudo apt-get install tcpdump root@raspberrypi:/home/pi# sudo apt-get install aircrack-ng TODO: wlan* in denyinterfaces von dhcpcd.conf eintragen, sonst zieht das die Interfaces hoch (ohne dass man dies möchte) pi@raspberrypi:~ $ sudo raspi-config -> Eigenes Passwort festlegen! (Tastatur vorher auf korrektes Layout prüfen!) sudo reboot
Zusammenfassung: Was funktioniert und was nicht?
Es gibt verschiedene Wahlmöglichkeiten für die Wireless-Schnittstelle, die unterschiedlich gut (oder schlecht) funktionieren. Optimal wäre der Aufbau wohl mit einem externen USB-Wireless-Stick (mit Monitor Mode), einem PiJuice (für Stromversorgung auch ohne Netzteil), einem AP auf der on-board Karte damit der Pi während der Analyse von einem separaten Laptop gesteuert werden kann.
Broadcom BCM43455 (onboard Raspberry Pi 3 B+)
Mit „nexmon“ Firmware-Patch funktioniert der „monitor mode“, allerdings sind keine DATA Pakete sichtbar sondern nur Beacons und Multicast. (Es ist möglich dass zukünftige Korrekturen/Erweiterungen die Funktion doch noch nachrüsten.)
Status: 
TP-Link Archer T2UH (v1/v2)
Ein schreckliches Stück Hardwaregeschichte das es nicht wert ist gekauft zu werden. Die Treiberunterstützung vom Hersteller ist traurig schlecht. In 2018 offiziell einen Treiber bis Kernel v3.16 anzubieten ist schon wirklich dreist (und sich dafür mit Linux-Unterstützung zu rühmen). Es gibt modifizierte Treiber z.B. im GitHub Repository von Ulli Kroll, die zumindest auf v4.14 kompilieren, aber auch nicht für den „monitor mode“ funktionieren. Der Versuch den Stick mit airmon-ng zu initialisieren führt dazu dass sich der Kernel weghängt. Sowohl HW v1.0 als auch v2.0 funktionieren nicht für den Monitor Mode (habe beide Varianten getestet).
Status: 
Alfa AWUS036ACH Dual Band USB Adapter AC1200
https://www.amazon.de/Alfa-AWUS036ACH-Dual-Adapter-AC1200/dp/B00VEEBOPG/
Erfahrungen folgen, wenn der Stick da ist … sieht zumindest beeindruckend aus! :D
Status: 
Broadcom BCM43455 (onboard Raspberry Pi 3 B+) für Wireless Monitor Mode vorbereiten
Dieser Vorgang (Änderung der Firmware) kann den Raspberry Pi irreperabel beschädigen!
pi@raspberrypi:~ $ sudo su root@raspberrypi:/home/pi# sudo apt-get install raspberrypi-kernel-headers git libgmp3-dev gawk qpdf bison flex make Reading package lists... Done Building dependency tree Reading state information... Done make is already the newest version (4.1-9.1). make set to manually installed. The following additional packages will be installed: git-man libbison-dev liberror-perl libfl-dev libgmp-dev libgmpxx4ldbl libqpdf17 libsigsegv2 m4 Suggested packages: bison-doc gawk-doc git-daemon-run | git-daemon-sysvinit git-doc git-el git-email git-gui gitk gitweb git-arch git-cvs git-mediawiki git-svn gmp-doc libgmp10-doc libmpfr-dev m4-doc The following NEW packages will be installed: bison flex gawk git git-man libbison-dev liberror-perl libfl-dev libgmp-dev libgmp3-dev libgmpxx4ldbl libqpdf17 libsigsegv2 m4 qpdf raspberrypi-kernel-headers 0 upgraded, 16 newly installed, 0 to remove and 0 not upgraded. Need to get 24.5 MB of archives. After this operation, 140 MB of additional disk space will be used. Do you want to continue? [Y/n] -> Y
Werkzeug zur Modifikation der Firmware vorbereiten
root@raspberrypi:/home/pi# git clone https://github.com/seemoo-lab/nexmon.git Cloning into 'nexmon'... remote: Enumerating objects: 33085, done. remote: Total 33085 (delta 0), reused 0 (delta 0), pack-reused 33085 Receiving objects: 100% (33085/33085), 355.78 MiB | 6.05 MiB/s, done. Resolving deltas: 100% (14894/14894), done. Checking out files: 100% (33209/33209), done. root@raspberrypi:/home/pi# cd nexmon/ root@raspberrypi:/home/pi/nexmon# cd buildtools/isl-0.10/ root@raspberrypi:/home/pi/nexmon/buildtools/isl-0.10# ./configure (warten) root@raspberrypi:/home/pi/nexmon/buildtools/isl-0.10# make (warten) root@raspberrypi:/home/pi/nexmon/buildtools/isl-0.10# make install (warten) root@raspberrypi:/home/pi/nexmon/buildtools/isl-0.10# ln -s /usr/local/lib/libisl.so /usr/lib/arm-linux-gnueabihf/libisl.so.10 root@raspberrypi:/home/pi/nexmon/buildtools/isl-0.10# cd .. root@raspberrypi:/home/pi/nexmon/buildtools# cd .. root@raspberrypi:/home/pi/nexmon# source setup_env.sh root@raspberrypi:/home/pi/nexmon# make (warten)
Der Raspberry Pi 3 B+ verwendet den BCM43455 für Wireless.
root@raspberrypi:/home/pi/nexmon# cd patches/bcm43455c0/7_45_154/nexmon/
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0/7_45_154/nexmon# make
########### ########### ########## ##########
############ ############ ############ ############
## ## ## ## ## ## ##
## ## ## ## ## ## ##
########### #### ###### ## ## ## ## ######
########### #### # ## ## ## ## # #
## ## ###### ## ## ## ## # #
## ## # ## ## ## ## # #
############ ##### ###### ## ## ## ##### ######
########### ########### ## ## ## ##########
S E C U R E M O B I L E N E T W O R K I N G
presents:
# ### ### # # # ### ### ### # ###
## # # # # # ## ## # # # ## #
# # ##### # # # # # # # #
# # # # # # # # # # # #
# # #### # # # # # ### # #
The C-based Firmware Patching Framework
!!! WARNING !!!
Our software may damage your hardware and may void your hardware’s
warranty! You use our tools at your own risk and responsibility
COLLECTING STATISTICS read /home/pi/nexmon/STATISTICS.md for more information
COMPILING src/injection.c => obj/injection.o (details: log/compiler.log)
COMPILING src/patch.c => obj/patch.o (details: log/compiler.log)
COMPILING src/console.c => obj/console.o (details: log/compiler.log)
COMPILING src/version.c => obj/version.o (details: log/compiler.log)
COMPILING src/sendframe.c => obj/sendframe.o (details: log/compiler.log)
COMPILING src/monitormode.c => obj/monitormode.o (details: log/compiler.log)
COPYING UCODE /home/pi/nexmon/firmwares/bcm43455c0/7_45_154/ucode.bin => gen/ucode.bin
COMPRESSING UCODE gen/ucode.bin => gen/ucode_compressed.bin
GENERATING C FILE gen/ucode_compressed.bin => src/ucode_compressed.c
COMPILING src/ucode_compressed.c => obj/ucode_compressed.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/wrapper.c => obj/wrapper.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/argprintf.c => obj/argprintf.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/helper.c => obj/helper.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/udptunnel.c => obj/udptunnel.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/ucode_compression_code.c => obj/ucode_compression_code.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/objmem.c => obj/objmem.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/securitycookie.c => obj/securitycookie.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/patches/common/radiotap.c => obj/radiotap.o (details: log/compiler.log)
COMPILING /home/pi/nexmon/firmwares/bcm43455c0/7_45_154/flashpatches.c => obj/flashpatches.o (details: log/compiler.log)
GENERATING LINKER FILE gen/nexmon.pre => gen/nexmon.ld
GENERATING LINKER FILE gen/nexmon.pre => gen/flashpatches.ld
GENERATING LINKER FILE gen/memory.ld
LINKING OBJECTS => gen/patch.elf (details: log/linker.log, log/linker.err)
GENERATING MAKE FILE gen/nexmon.pre => gen/nexmon.mk
GENERATING MAKE FILE gen/nexmon.pre => gen/flashpatches.mk
APPLYING FLASHPATCHES gen/flashpatches.mk => brcmfmac43455-sdio.bin (details: log/flashpatches.log)
APPLYING PATCHES gen/nexmon.mk => brcmfmac43455-sdio.bin (details: log/patches.log)
BUILDING DRIVER for kernel 4.14 brcmfmac_4.14.y-nexmon/brcmfmac.ko (details: log/driver.log)
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0/7_45_154/nexmon# make backup-firmware
cp /lib/firmware/brcm/brcmfmac43455-sdio.bin brcmfmac43455-sdio.bin.orig
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0/7_45_154/nexmon# make install-firmware
########### ########### ########## ##########
############ ############ ############ ############
## ## ## ## ## ## ##
## ## ## ## ## ## ##
########### #### ###### ## ## ## ## ######
########### #### # ## ## ## ## # #
## ## ###### ## ## ## ## # #
## ## # ## ## ## ## # #
############ ##### ###### ## ## ## ##### ######
########### ########### ## ## ## ##########
S E C U R E M O B I L E N E T W O R K I N G
presents:
# ### ### # # # ### ### ### # ###
## # # # # # ## ## # # # ## #
# # ##### # # # # # # # #
# # # # # # # # # # # #
# # #### # # # # # ### # #
The C-based Firmware Patching Framework
!!! WARNING !!!
Our software may damage your hardware and may void your hardware’s
warranty! You use our tools at your own risk and responsibility
COLLECTING STATISTICS read /home/pi/nexmon/STATISTICS.md for more information
COMPILING src/version.c => obj/version.o (details: log/compiler.log)
GENERATING LINKER FILE gen/nexmon.pre => gen/nexmon.ld
GENERATING LINKER FILE gen/nexmon.pre => gen/flashpatches.ld
LINKING OBJECTS => gen/patch.elf (details: log/linker.log, log/linker.err)
GENERATING MAKE FILE gen/nexmon.pre => gen/nexmon.mk
GENERATING MAKE FILE gen/nexmon.pre => gen/flashpatches.mk
APPLYING FLASHPATCHES gen/flashpatches.mk => brcmfmac43455-sdio.bin (details: log/flashpatches.log)
APPLYING PATCHES gen/nexmon.mk => brcmfmac43455-sdio.bin (details: log/patches.log)
BUILDING DRIVER for kernel 4.14 brcmfmac_4.14.y-nexmon/brcmfmac.ko (details: log/driver.log)
COPYING brcmfmac43455-sdio.bin => /lib/firmware/brcm/brcmfmac43455-sdio.bin
UNLOADING brcmfmac
RELOADING brcmfmac
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0/7_45_154/nexmon# cd ..
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0/7_45_154# cd ..
root@raspberrypi:/home/pi/nexmon/patches/bcm43455c0# cd ..
root@raspberrypi:/home/pi/nexmon/patches# cd ..
Neuen Treiber bootfest machen:
root@raspberrypi:/home/pi# cp nexmon/patches/bcm43455c0/7_45_154/nexmon/brcmfmac_4.14.y-nexmon/brcmfmac.ko /lib/modules/4.14.71-v7+/kernel/drivers/net/wireless/broadcom/brcm80211/brcmfmac/brcmfmac.ko
root@raspberrypi:/home/pi# depmod -a
root@raspberrypi:/home/pi# reboot
Pakete mitschneiden
root@raspberrypi:/home/pi# ip link set dev wlan0 down
root@raspberrypi:/home/pi# iw phy `iw dev wlan0 info | gawk '/wiphy/ {printf "phy" $2}'` interface add mon0 type monitor
root@raspberrypi:/home/pi# ip link set dev mon0 up
root@raspberrypi:/home/pi# iwconfig mon0 channel X
root@raspberrypi:/home/pi# tcpdump -i mon0
Mir ist bis bisher nicht gelungen dass da auch „DATA“ sichtbar wird, bisher scheinen dies nur „No DATA“ Pakete zu sein.
pi@raspberrypi:~ $ sudo tcpdump -vvvi mon0 tcpdump: listening on mon0, link-type IEEE802_11_RADIO (802.11 plus radiotap header), capture size 262144 bytes 14:50:23.515075 1040101307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:23.617424 1040203707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:23.719838 1040306107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:23.822248 1040408507us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:23.924618 1040510907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.027050 1040613307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.129420 1040715707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.231824 1040818106us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.334231 1040920507us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.334337 1040921064us tsft 24.0 Mb/s 5560 MHz 11a -50dBm signal 0dBm noise Data IV:72bc Pad 20 KeyID 1 14:50:24.436624 1041022907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.539040 1041125307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.641409 1041227707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.743823 1041330107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.846251 1041432507us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:24.948625 1041534907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.051063 1041637307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.153422 1041739707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.255820 1041842107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.358259 1041944507us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.460626 1042046907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.563047 1042149307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.665424 1042251707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.767822 1042354107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.870252 1042456507us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:25.972624 1042558907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.075046 1042661307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.177423 1042763707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.279835 1042866107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.279949 1042866665us tsft 24.0 Mb/s 5560 MHz 11a -50dBm signal 0dBm noise Data IV:72d0 Pad 20 KeyID 1 14:50:26.382260 1042968507us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.484626 1043070907us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.587047 1043173307us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.689426 1043275707us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.791819 1043378107us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.894261 1043480507us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:26.996630 1043582908us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.099050 1043685308us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.201432 1043787707us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.303829 1043890107us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.406250 1043992508us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.508631 1044094908us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.611057 1044197308us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.713433 1044299708us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.815836 1044402108us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:27.918257 1044504508us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.020605 1044606908us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.123058 1044709308us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.225432 1044811708us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.327834 1044914108us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.327971 1044914665us tsft 24.0 Mb/s 5560 MHz 11a -50dBm signal 0dBm noise Data IV:72e5 Pad 20 KeyID 1 14:50:28.430265 1045016508us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.524239 1045110868us tsft 24.0 Mb/s 5560 MHz 11a -79dBm signal 0dBm noise Request-To-Send TA:94:e9:6a:08:5a:c3 (oui Unknown) 14:50:28.524305 1045110915us tsft 24.0 Mb/s 5560 MHz 11a -53dBm signal 0dBm noise Clear-To-Send RA:94:e9:6a:08:5a:c3 (oui Unknown) 14:50:28.524408 1045111030us tsft 24.0 Mb/s 5560 MHz 11a -55dBm signal 0dBm noise BA RA:94:e9:6a:08:5a:c3 (oui Unknown) 14:50:28.532588 1045118908us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.534060 1045120912us tsft 24.0 Mb/s 5560 MHz 11a -74dBm signal 0dBm noise 14:50:28.534125 1045120963us tsft 24.0 Mb/s 5560 MHz 11a -50dBm signal 0dBm noise Acknowledgment RA:94:e9:6a:08:5a:c3 (oui Unknown) 14:50:28.534617 1045121416us tsft 24.0 Mb/s 5560 MHz 11a -79dBm signal 0dBm noise BA RA:dc:08:56:00:1b:d9 (oui Unknown) 14:50:28.551067 1045137904us tsft 24.0 Mb/s 5560 MHz 11a -75dBm signal 0dBm noise 14:50:28.551131 1045137954us tsft 24.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Acknowledgment RA:94:e9:6a:08:5a:c3 (oui Unknown) 14:50:28.635051 1045221308us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.737437 1045323708us tsft 6.0 Mb/s 5560 MHz 11a -46dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.839810 1045426108us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:28.942255 1045528508us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.044640 1045630908us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.147056 1045733308us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.249439 1045835708us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.351839 1045938108us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.454254 1046040508us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.556647 1046142908us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.659049 1046245308us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.761445 1046347708us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.863844 1046450108us tsft 6.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:29.966251 1046552508us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.068646 1046654908us tsft 6.0 Mb/s 5560 MHz 11a -48dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.171046 1046757308us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.273445 1046859708us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.273547 1046860266us tsft 24.0 Mb/s 5560 MHz 11a -49dBm signal 0dBm noise Data IV:72f9 Pad 20 KeyID 1 14:50:30.375841 1046962108us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.478284 1047064509us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.580646 1047166909us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.683048 1047269308us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY 14:50:30.785450 1047371709us tsft 6.0 Mb/s 5560 MHz 11a -47dBm signal 0dBm noise Beacon (V11-Home) [6.0* 9.0 12.0* 18.0 24.0* 36.0 48.0 54.0 Mbit] ESS CH: 112, PRIVACY ^C 84 packets captured 84 packets received by filter 0 packets dropped by kernel 2 packets dropped by interface
Irritationen mit dem Country Code
pi@raspberrypi:~ $ iw reg get global country 00: DFS-UNSET (2402 - 2472 @ 40), (N/A, 20), (N/A) (2457 - 2482 @ 20), (N/A, 20), (N/A), AUTO-BW, NO-IR (2474 - 2494 @ 20), (N/A, 20), (N/A), NO-OFDM, NO-IR (5170 - 5250 @ 80), (N/A, 20), (N/A), AUTO-BW, NO-IR (5250 - 5330 @ 80), (N/A, 20), (0 ms), DFS, AUTO-BW, NO-IR (5490 - 5730 @ 160), (N/A, 20), (0 ms), DFS, NO-IR (5735 - 5835 @ 80), (N/A, 20), (N/A), NO-IR (57240 - 63720 @ 2160), (N/A, 0), (N/A) pi@raspberrypi:~ $ iw reg set DE command failed: Operation not permitted (-1) pi@raspberrypi:~ $ sudo !! sudo iw reg set DE pi@raspberrypi:~ $ iw reg get global country DE: DFS-ETSI (2400 - 2483 @ 40), (N/A, 20), (N/A) (5150 - 5250 @ 80), (N/A, 20), (N/A), NO-OUTDOOR, AUTO-BW (5250 - 5350 @ 80), (N/A, 20), (0 ms), NO-OUTDOOR, DFS, AUTO-BW (5470 - 5725 @ 160), (N/A, 26), (0 ms), DFS (5725 - 5875 @ 80), (N/A, 13), (N/A) (57000 - 66000 @ 2160), (N/A, 40), (N/A)
Weitere relevante Kommandos/Ausgaben für WLAN
pi@raspberrypi:~ $ iw dev
phy#0
Interface wlan0
ifindex 3
wdev 0x1
addr b8:27:eb:8d:c3:bc
type managed
channel 34 (5170 MHz), width: 20 MHz, center1: 5170 MHz
txpower 31.00 dBm
pi@raspberrypi:~ $
pi@raspberrypi:~ $
pi@raspberrypi:~ $ iw phy0 info
Wiphy phy0
max # scan SSIDs: 10
max scan IEs length: 2048 bytes
max # sched scan SSIDs: 16
max # match sets: 16
max # scan plans: 1
max scan plan interval: 508
max scan plan iterations: 0
Retry short limit: 7
Retry long limit: 4
Coverage class: 0 (up to 0m)
Device supports T-DLS.
Supported Ciphers:
* WEP40 (00-0f-ac:1)
* WEP104 (00-0f-ac:5)
* TKIP (00-0f-ac:2)
* CCMP-128 (00-0f-ac:4)
* CMAC (00-0f-ac:6)
Available Antennas: TX 0 RX 0
Supported interface modes:
* IBSS
* managed
* AP
* monitor
* P2P-client
* P2P-GO
* P2P-device
Band 1:
Capabilities: 0x1022
HT20/HT40
Static SM Power Save
RX HT20 SGI
No RX STBC
Max AMSDU length: 3839 bytes
DSSS/CCK HT40
Maximum RX AMPDU length 65535 bytes (exponent: 0x003)
Minimum RX AMPDU time spacing: 16 usec (0x07)
HT TX/RX MCS rate indexes supported: 0-7
Bitrates (non-HT):
* 1.0 Mbps
* 2.0 Mbps (short preamble supported)
* 5.5 Mbps (short preamble supported)
* 11.0 Mbps (short preamble supported)
* 6.0 Mbps
* 9.0 Mbps
* 12.0 Mbps
* 18.0 Mbps
* 24.0 Mbps
* 36.0 Mbps
* 48.0 Mbps
* 54.0 Mbps
Frequencies:
* 2412 MHz [1] (20.0 dBm)
* 2417 MHz [2] (20.0 dBm)
* 2422 MHz [3] (20.0 dBm)
* 2427 MHz [4] (20.0 dBm)
* 2432 MHz [5] (20.0 dBm)
* 2437 MHz [6] (20.0 dBm)
* 2442 MHz [7] (20.0 dBm)
* 2447 MHz [8] (20.0 dBm)
* 2452 MHz [9] (20.0 dBm)
* 2457 MHz [10] (20.0 dBm)
* 2462 MHz [11] (20.0 dBm)
* 2467 MHz [12] (disabled)
* 2472 MHz [13] (disabled)
* 2484 MHz [14] (disabled)
Band 2:
Capabilities: 0x1062
HT20/HT40
Static SM Power Save
RX HT20 SGI
RX HT40 SGI
No RX STBC
Max AMSDU length: 3839 bytes
DSSS/CCK HT40
Maximum RX AMPDU length 65535 bytes (exponent: 0x003)
Minimum RX AMPDU time spacing: 16 usec (0x07)
HT TX/RX MCS rate indexes supported: 0-7
VHT Capabilities (0x00001020):
Max MPDU length: 3895
Supported Channel Width: neither 160 nor 80+80
short GI (80 MHz)
SU Beamformee
VHT RX MCS set:
1 streams: MCS 0-9
2 streams: not supported
3 streams: not supported
4 streams: not supported
5 streams: not supported
6 streams: not supported
7 streams: not supported
8 streams: not supported
VHT RX highest supported: 0 Mbps
VHT TX MCS set:
1 streams: MCS 0-9
2 streams: not supported
3 streams: not supported
4 streams: not supported
5 streams: not supported
6 streams: not supported
7 streams: not supported
8 streams: not supported
VHT TX highest supported: 0 Mbps
Bitrates (non-HT):
* 6.0 Mbps
* 9.0 Mbps
* 12.0 Mbps
* 18.0 Mbps
* 24.0 Mbps
* 36.0 Mbps
* 48.0 Mbps
* 54.0 Mbps
Frequencies:
* 5170 MHz [34] (disabled)
* 5180 MHz [36] (20.0 dBm)
* 5190 MHz [38] (disabled)
* 5200 MHz [40] (20.0 dBm)
* 5210 MHz [42] (disabled)
* 5220 MHz [44] (20.0 dBm)
* 5230 MHz [46] (disabled)
* 5240 MHz [48] (20.0 dBm)
* 5260 MHz [52] (20.0 dBm) (no IR, radar detection)
* 5280 MHz [56] (20.0 dBm) (no IR, radar detection)
* 5300 MHz [60] (20.0 dBm) (no IR, radar detection)
* 5320 MHz [64] (20.0 dBm) (no IR, radar detection)
* 5500 MHz [100] (20.0 dBm) (no IR, radar detection)
* 5520 MHz [104] (20.0 dBm) (no IR, radar detection)
* 5540 MHz [108] (20.0 dBm) (no IR, radar detection)
* 5560 MHz [112] (20.0 dBm) (no IR, radar detection)
* 5580 MHz [116] (20.0 dBm) (no IR, radar detection)
* 5600 MHz [120] (20.0 dBm) (no IR, radar detection)
* 5620 MHz [124] (20.0 dBm) (no IR, radar detection)
* 5640 MHz [128] (20.0 dBm) (no IR, radar detection)
* 5660 MHz [132] (20.0 dBm) (no IR, radar detection)
* 5680 MHz [136] (20.0 dBm) (no IR, radar detection)
* 5700 MHz [140] (20.0 dBm) (no IR, radar detection)
* 5720 MHz [144] (20.0 dBm) (no IR, radar detection)
* 5745 MHz [149] (20.0 dBm)
* 5765 MHz [153] (20.0 dBm)
* 5785 MHz [157] (20.0 dBm)
* 5805 MHz [161] (20.0 dBm)
* 5825 MHz [165] (20.0 dBm)
Supported commands:
* new_interface
* set_interface
* new_key
* start_ap
* join_ibss
* set_pmksa
* del_pmksa
* flush_pmksa
* remain_on_channel
* frame
* set_wiphy_netns
* set_channel
* tdls_oper
* start_sched_scan
* start_p2p_device
* connect
* disconnect
* crit_protocol_start
* crit_protocol_stop
* Unknown command (122)
Supported TX frame types:
* managed: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
* monitor: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
* P2P-client: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
* P2P-GO: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
* P2P-device: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
Supported RX frame types:
* managed: 0x40 0xd0
* monitor: 0x00 0x10 0x20 0x30 0x40 0x50 0x60 0x70 0x80 0x90 0xa0 0xb0 0xc0 0xd0 0xe0 0xf0
* P2P-client: 0x40 0xd0
* P2P-GO: 0x00 0x20 0x40 0xa0 0xb0 0xc0 0xd0
* P2P-device: 0x40 0xd0
software interface modes (can always be added):
valid interface combinations:
* #{ managed } <= 1, #{ monitor } <= 1, #{ P2P-device } <= 1, #{ P2P-client, P2P-GO } <= 1,
total <= 4, #channels <= 2
* #{ managed } <= 1, #{ AP } <= 1, #{ monitor } <= 1, #{ P2P-client } <= 1, #{ P2P-device } <= 1,
total <= 5, #channels <= 1
Device supports scan flush.
raspberry-pi-monitor-mode.1540105417.txt.gz · Zuletzt geändert: 2024/06/09 10:29 (Externe Bearbeitung)