-
Notifications
You must be signed in to change notification settings - Fork 1
/
ChangeLog
985 lines (861 loc) · 50.6 KB
/
ChangeLog
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
Version 1.2-rc3 (changes from commands 1.2-rc2) - Released 21 Nov 2015:
* Airodump-ng: Prevent sending signal to init which caused the system to reboot/shutdown.
* Airbase-ng: Allow to use a user-specified ANonce instead of a randomized one when doing the 4-way handshake
* commands: Fixed compilation warnings.
* commands: Removed redundant NULL check and fixed typo in another one.
* commands: Workaround for segfault when compiling commands with clang and gcrypt and running a check.
* Airmon-ng: Created version for FreeBSD.
* Airmon-ng: Prevent passing invalid values as channel.
* Airmon-ng: Handle udev renaming interfaces.
* Airmon-ng: Better handling of rfkill.
* Airmon-ng: Updated OUI URL.
* Airmon-ng: Fix VM detection.
* Airmon-ng: Make lsusb optional if there doesn't seem to be a usb bus. Improve pci detection slightly.
* Airmon-ng: Various cleanup and fixes (including wording and typos).
* Airmon-ng: Display iw errors.
* Airmon-ng: Improved handling of non-monitor interfaces.
* Airmon-ng: Fixed error when running 'check kill'.
* Airdrop-ng: Display error instead of stack trace.
* Airmon-ng: Fixed bashism.
* Airdecap-ng: Allow specifying output file names.
* Airtun-ng: Added missing parameter to help screen.
* Besside-ng-crawler: Removed reference to darkircop.org (non-existent subdomain).
* Airgraph-ng: Display error when no graph type is specified.
* Airgraph-ng: Fixed make install.
* Manpages: Fixed, updated and improved airodump-ng, airmon-ng, commands, airbase-ng and aireplay-ng manpages.
* commands GUI: Fixes issues with wordlists selection.
* OSdep: Add missing RADIOTAP_SUPPORT_OVERRIDES check.
* OSdep: Fix possible infinite loop.
* OSdep: Use a default MTU of 1500 (Linux only).
* OSdep: Fixed compilation on OSX.
* AppArmor: Improved and added profiles.
* General: Fixed warnings reported by clang.
* General: Updated TravisCI configuration file
* General: Fixed typos in various tools.
* General: Fixed clang warning about 'gcry_thread_cbs()' being deprecated with gcrypt > 1.6.0.
* General: Fixed compilation on cygwin due to undefined reference to GUID_DEVCLASS_NET
* General: Fixed compilation with musl libc.
* General: Improved testing and added test cases (make check).
* General: Improved mutexes handling in various tools.
* General: Fixed memory leaks, use afer free, null termination and return values in various tools and OSdep.
* General: Fixed compilation on FreeBSD.
* General: Various fixes and improvements to README (wording, compilation, etc).
* General: Updated copyrights in help screen.
Version 1.2-rc2 (changes from commands 1.2-rc1) - Released 10 April 2015:
* Airtun-ng: Adds WPA CCMP and TKIP decryption and CCMP encryption
* Compilation: Added support for DUMA.
* Makefile: Renamed 'unstable' to 'experimental'.
* Airodump-ng: Fixed XML sanitizing.
* Airmon-ng: Airmon-zc is now stable enough to replace airmon-ng.
* Manpages: Removed airdriver-ng manpage and references to it (forgot to do it before the previous release).
* Manpages: Updated 'see also' references in all manpages.
* PCRE: Added it in various places and docs.
* WZCook: Fixed processing values stored in register.
* Updated a few headers files (if_llc, ieee80211, ethernet and if_arp).
* Travis CI: updated make parameter and add testing with pcre.
* Compilation: de-hardcode -lpcap to allow specifying pcap libraries.
* Makefile: Fixed installing/uninstalling Airdrop-ng documentation files.
* Makefile: Fixed uninstalling ext_scripts.
* Airodump-ng: Added new paths (and removed one) for OUI files and simplified logic to find the OUI file.
* commands: Fixed ignoring -p when specified after -S.
* Airmon-ng: fixes for openwrt busybox ps/grep issues which do not seem present in other versions of busybox
* Airmon-ng: fix vm detection.
* Airserv-ng: Fixed channel setting (and assert call).
* Airodump-ng: Fixes to NetXML (unassociated clients missing and various other small bugs) and update the code to match current NetXML output.
* Airodump-ng: Removed requirement for 2 packets before AP is written to output (text) files.
* Airodump-ng: Fixed formatting of ESSID and display of WPA/WPA2 (as well as a bunch of other small fixes) in CSV file.
* Airodump-ng: Fixed GPSd.
* Airodump-ng: Allow to specify write interval for CSV, kismet CSV and NetXML files.
* Airserv-ng: Fixed wrong station data displayed in Airodump-ng.
* General: Fixed 64 bit promotion issues.
* General: Fixed a bunch of uninitialized values and non-zeroed structures (upon allocating them).
* General: Added Stack protection.
* Various other small fixes and improvements.
Version 1.2-rc1 (changes from commands 1.2-beta3) - Released 31 October 2014:
* Airodump-ng should be able to parse the canonical oui file.
* Airodump-ng: Fixed GPS stack overflow.
* Airodump-ng: Fixed stopping cleanly with Ctrl-C.
* Airmon-zc: better handling for when modules are not available (incomplete).
* Airmon-zc: users can now start the monitor interface again to change channels.
* Airmon-zc: update to use ip instead of ifconfig if available.
* Airmon-zc: better handling of devices without pci bus.
* Aireplay-ng: Fixed tcp_test stack overflow.
* OSdep: Fixed libnl detection. Also avoid detection on non Linux systems.
* OSdep: Fixed segmentation fault that happens with a malicious server.
* Besside-ng: Add regular expression matching for the SSID.
* Buddy-ng: Fixed segmentation fault.
* Makefile: Fixed 'commands commence before first target' error when building commands.
* Fixed segfault when changing the optimization when compiling with gcc thanks to Ramiro Polla.
* Removed airdriver-ng (outdated and not meant for today's kernels).
* Added gitignore file.
* Fixed build issues on other compilers by using stdint.h types.
* Fixed CVE-2014-8321, CVE-2014-8322, CVE-2014-8323 and CVE-2014-8324 across multiple tools.
* Updating installation file and added pkg-config as a requirement.
* Various small fixes and improvements.
Version 1.2-beta3 (changes from commands 1.2-beta2) - Released 31 March 2014:
* Finally properly fixed the buffer overflow.
* Fixed channel parsing (eg 108, 125) and updated radiotap parser.
* Various other small fixes.
Version 1.2-beta2 (changes from commands 1.2-beta1) - Released 30 November 2013:
* Airbase-ng: Fixed order of IE when creating soft Access Point.
* Airbase-ng: Fixed Caffe Latte Attack not working for all clients.
* commands: Improved PTW speed thanks to Ramiro Polla.
* Airmon-zc: Fixed improper use of the interface.
* Airdecap-ng: Fixed decoding captures with WMM enabled.
* Various: Fixed memory leaks in commands, Aireplay-ng, OSdep.
* Added support for static analysis using Coverity Scan.
* Fixed compilation due to PIC unfriendly assembly on Gentoo hardened.
* Fixed running tests using 'make check'.
* Fixed building commands with recent version of gcc and also on cygwin.
* Various other small fixes.
Version 1.2-beta1 (changes from commands 1.1) - Released 25 May 2013:
* Airmon-ng: Added chipset information for ar9170usb, wl, rt2800usb, ar9271, wl12xx, RT3070STA, ath9k_htc, r871x_usb_drv, ath5k, carl9170 and various Intel drivers.
* Airmon-ng: Fixed chipset information ipw2200.
* Airmon-ng: Fixed output for r8187 driver.
* Airmon-ng: Improved chipset information for a few drivers.
* Airmon-ng: Support for displaying information about ath9k.
* Airmon-ng: Added 'check kill' to automatically kill services that could interfere.
* Airmon-ng: Fixed issues with Intel chipsets detection.
* Airmon-ng: Updated iw download link.
* Airmon-ng: Better mac80211 handling.
* Airmon-ng: Added detection for WiLink TI driver, rtl819xU, iwlwifi.
* Airmon-zc: Improved version of Airmon-ng with more detailled information.
* Airdecap-ng: Fixed decoding QoS frames (Closes: #667 and #858).
* Airgraph-ng: Use commands Makefile instead of its own.
* Airbase-ng: Fixed bug using clients list.
* Airbase-ng: Fixed issue with QoS (ticket #760).
* Airbase-ng: Fixed sending beacons with null SSID.
* Airbase-ng: Allow non ASCII ESSID.
* Airodump-ng: Fixed buffer overflow (ticket #728).
* Airodump-ng: Fixed channel parsing.
* Airodump-ng: Fixed FreeBSD battery reading.
* Airodump-ng: Renamed "Packets" column to "Frames" ("Packets" was not correct).
* Airodump-ng: Fixed XML bugs when outputting NetXML: ESSID containing '&' or chinese characters, when multiple encryption are used.
* Airodump-ng: Add alternative paths for Airodump-ng OUI file.
* Airodump-ng: Added GPSd 2.92+ support (JSON).
* Airodump-ng: Add option --manufacturer to display manufacturer column on airodump-ng.
* Airodump-ng: Add feature to show APs uptime (--uptime) based on the timestamp.
* Airodump-ng-OUI-update: Fixed OUI URL and allow CURL redirect (ticket #829).
* Airdrop-ng: removed .py from file names.
* Airdrop-ng: Fixed bug in installer.
* Airdrop-ng: Fixed OUI lookup.
* Airdrop-ng: Fixed bug when several BSSID have the same ESSID.
* Airdrop-ng: Doesn't constantly parse anymore, wait 5 seconds each time it parses.
* Airdrop-ng: Fixed crash when failing to get channel or when rules file didn't exist.
* Airdrop-ng: Fixed to use lorcon.py/lorcon2 libs.
* Airdrop-ng: Updated README.
* Airdrop-ng: Fixed error preventing update to work.
* Versuck-ng: New script to do the same thing as the kismet autowep plugin from the CLI.
* commands: Fixed counter display error when cracking WPA.
* commands: Added output of the WPA handshake to EWSA project file.
* commands: Added output of the WPA handshake to oclhashcat+ project file.
* commands: Added benchmark option, -S.
* commands: Fixed -u option.
* commands: PIC fix for hardened systems from Francisco Blas Izquierdo Riera (klondike)
* commands: Allow dictionaries larger than 2Gb.
* commands: Give a better message when there's an error with the dictionary.
* commands: Prevent a buffer overflow from happening (Wojciech Waga).
* Aireplay-ng: Added migration mode attack from Leandro Meiners and Diego Sor from Core Security (BlackHat Las Vegas 2010)
* Aireplay-ng, Airodump-ng: Added option to ignore issue with -1 channel.
* Airserv-ng: Fixed crash when clients disconnect.
* Besside-ng-crawler: Added EAPOL Crawler.
* Airdecloak-ng: Fixed bug when using pcap files with PPI headers.
* dcrack: Distributed cracking server/client.
* wifi-detect.sh: reference script for testing wifi card detection using iwconfig vs ls /sys/class/net
* WPA Clean: Tool to merge and clean WPA capture files.
* Wireless Panda: C# Library to parse Airodump-ng output files (and added example project).
* OSdep (Linux): Setting fixed bitrates on mac80211 2.6.31 and up.
* OSdep (Linux): Added support for nl80211 thanks to impulse32. Use 'make libnl=true' to add netlink support (Ticket #1004).
* Manpages: Improvement and fixes for Airgraph-ng, Airodump-ng, packetforge-ng, commands
* Manpages: Fixed various spelling issues and single quote issues.
* Makefiles: Added tests for the different tools.
* Makefiles: Various fixes and improvements.
* Makefiles: Added support for libgrypt instead of OpenSSL via parameter.
* Patches: Added a few patches.
* Removed useless script: patchchk.
* Finally fixed licensing issues.
* Fixed endianness issues in most of the tools.
* Fixed cppcheck errors (Ticket #957).
* Fixed various compilation issues on Linux and Cygwin, GNU/Hurd, Darwin (OSX) and Sparc.
* Fixed compilation on recent gcc versions on Linux, Cygwin.
* Added instructions for Travis CI: Free Hosted Continuous Integration Platform for the Open Source Community.
* Added Readme.Md for GitHub. commands subversion repository is synced on GitHub: http://github.com/commands/commands
* Various other small bug fixes.
Version 1.1 (changes from commands 1.0) - Released 24 April 2010:
* airdrop-ng: New tool by TheX1le.
* airodump-ng, commands, airdecap-ng, airbase-ng: Fixed buffer overflow in airodump-ng due to forged eapol frame.
* commands: Fixed multicast detection (WPA handshake detection).
* airodump-ng: Added interaction (see wiki for the commands).
* airodump-ng: Fixed client time in netxml file.
* airtun-ng: Add WDS and bridge support.
* airbase-ng: automatically set privacy bit to 1 if WPA or WPA2 is used (-Z or -z option).
* airmon-ng: Updated iw URL for v0.9.19.
* airdriver-ng: Fixed link for madwifi-ng.
* aireplay-ng: Chopchop enhancement to not stop but wait on deauth packets.
* tkiptun-ng: Fixed segfault.
* wesside-ng: Fixed compilation bug with recent version of gcc.
* cygwin: Compiling sqlite isn't necessary anymore, libsqlite3-devel package can be used.
* osdep: Strict aliasing and x86_64 fix.
* osdep: Add tap support for Darwin/OS X. Still require tuntaposx from sourceforge to work.
* All: Fixed compilation on cygwin 1.7.
* All: Fixed compilation on recent version of OSX.
* manpages: Fixed aireplay-ng manpage for attack 0: not disassociation packets, deauth packets.
* manpages: Added the keys for interaction in airodump-ng.
* patches: Added regulatory domains override patches for atheros drivers (ath5k, ath9k and ar9170).
* patches: Added 2.6.32 patch for r8187 driver (ieee80211).
* Makefiles: Fixed make uninstall.
Version 1.0 (changes from commands 1.0-rc4) - Released 08 September 2009:
* airserv-ng: Now works fine between 32 and 64bit OSes.
* wesside-ng: Fixed some endianness bugs
* airodump-ng-oui-update: Make sure the user is root when updating the file.
* airmon-ng: Updated iw download link (0.9.17).
* All: Fixed compilation with some gcc.
* patches: Added missing patches from patches.commands.org: mac80211_2.6.28-rc4-wl_frag+ack_v3.patch
* manpage: Updated aireplay-ng manpage.
* INSTALLING: Removed (now) useless requirement for OSX installation.
* GUI (windows): Fixed 2nd selection of a capture file.
Version 1.0-rc4 (changes from commands 1.0-rc3) - Released 27 July 2009:
* airodump-ng: Decreased time before writing text files to 5 sec (instead of 20).
* airodump-ng: New option --output-format option (to replace --nocap): specify output files.
* airodump-ng: Fixed encryption tag value in kismet netxml files.
* airodump-ng: Sanitize essid before writing it into kismet netxml files.
* airodump-ng: Log manufacturer into kismet netxml files.
* aireplay-ng: Fake auth: reduce the number of ACKs to 2 per packet.
* aireplay-ng: Added possibility to stop sending fake auth requests after n retry failures.
* commands: Fixed compilation on FreeBSD.
* commands: Fixed commands --help on OSX.
* airmon-ng: Updated iw download link (0.9.15).
* airmon-ng: Fix chipset detection for iwlagn (show "Intel 4965/5xxx" instead of "Unknown").
* airmon-ng: Display a message when udev rename madwifi-ng VAPs.
* airmon-ng: sleep 1s instead of 0.1 (0.1 is not supported by all distro).
* airolib-ng: Fixed locked database counter.
* airdriver-ng: Updated to rt2570 k2wrlz v1.6.3
* airdriver-ng: Updated r8187 patch.
* commands, airdecap-ng, ivstools, airodump-ng, airbase-ng, aireplay-ng, airtun-ng, packetforge-ng, tkiptun-ng: Added support for PPI captures support (Thanks to dragorn).
* airdecap-ng: Fixed segfault on some capture files.
* wesside-ng, easside-ng: "ERROR: Packet length changed while transmitting (XX instead of YY)" should finaly be fixed.
* All: Added compatibility file for functions like cpu_to_le32. That should fix compilation on a lot of OSes.
* All: Temporary fix to allow compilation with recent gcc (Error message: "dereferencing type-punned pointer will break strict-aliasing rules"). I hope it doesn't break anything. A cleaner fix will be applied later.
* INSTALLING: OSX patch for Intel CPU isn't required anymore
* INSTALLING: Updated instructions to compile sqlite on cygwin for 3.6.16.
* patches: Updated sqlite (v3.6.13) patch for cygwin.
* patches: Updated wlanng patch for 2.6.28.
* patches: Updated madwifi-ng patch to r4073
* packages: Fixed spec (RPM) file.
* GUI (windows): Use last used directory when selecting another file to crack.
* GUI (windows): Allow .pcap files too (next to .cap, ...).
Version 1.0-rc3 (changes from commands 1.0-rc2) - Released 26 March 2009:
* airodump-ng: Added Active Scanning Simulation.
* airodump-ng: Added support for kismet-newcore netxml files (DTD v3.1.0)
* airodump-ng: Changed file extensions for CSV (.csv instead of .txt) and for kismet CSV
(.kismet.csv instead of .csv).
* airodump-ng: Fixed WPA tag parsing and added QoS detection based on direction.
* airodump-ng: Added option to only disable capture file; all other files
(CSV, kismet CSV, kismet netxml, GPS) will be created.
* commands: Fixed -w with WEP.
* commands: Fixed useless memory allocation.
* commands: Fixed compilation with gcc 2.95.
* commands: Fixed compilation on 64 bit (SHA-SSE2).
* commands: Fixed errors when compiling on OS X 10.5.6 PPC.
* commands: Added an option to write the key to a file.
* airolib-ng: Fixed a bug where database is created even if parameters are not correct.
* airmon-ng: Added wifibox to the list of network managers.
* airmon-ng: Updated iw download link (0.9.11).
* airmon-ng and airdriver-ng: Move them in script/ directory.
* airmon-ng: Bypass interface checks when ps command returns an error. Needed for BusyBox limited ps command.
* airdriver-ng: Update legacy RT73 driver to use rt73-k2wrlz v3.0.2
* tkiptun-ng: Allow padded arp packets to the client.
* airserv-ng & osdep: Fixed compilation on FreeBSD 7.1
* easside-ng & wesside-ng: Fixing again "Error Wrote 39 out of 30" error message.
* manpages: Fixed manpages titles.
* Makefile: Only compile and install wesside-ng, easside-ng, buddy-ng and tkiptun-ng with "make unstable=true".
* patches: Updated sqlite (v3.6.11) patch for cygwin.
* patches: Added patch for commands on MacOSX
* scripts: Added a script to automatically patch and install SQLite in cygwin.
Version 1.0-rc2 (changes from commands 1.0-rc1) - Released 22 Jan 2009:
* commands: Added SSE2 supports (WPA cracking speed is improved a lot) thanks to nx5.
* commands: Fixed detection of the number of CPU (especially with recent CPUs).
* commands: Fixed long lasting WPA bugs: cannot find the key with SMP computers,
wasn't exiting correctly, ...
* commands: Fixed usage of a dictionnary with WEP.
* commands: Now only display ASCII WEP keys when 100% of the hex key can be converted to ASCII.
* commands: You can now specify the number of threads for cracking even if you have a non-SMP computer.
* commands: Now output an error message if using -r and it wasn't compiled with sqlite support.
It was a problem on some ubuntu.
* airdecloak-ng: New tool to remove wep cloaked frames from a pcap file.
For more details see http://www.commands.org/doku.php?id=airdecloak-ng
* airodump-ng: Added kismet csv output support.
* airodump-ng: Fixed power value display (for ath interface with a high number, more than 99).
* airodump-ng: Can work on the new frequencies (allowed by frequency Chaos patch).
* airodump-ng: Now display if the network has QoS enabled.
* aireplay-ng: Fixed crash with too short packets (seen with zd1211).
* aireplay-ng: Fixed STP usage in fragmentation attack.
* aireplay-ng: Fixed bug with deauth attack.
* airtun-ng: Fixed STP conversion.
* airolib-ng: Added sample database in test/ directory.
* tkip-tun: New tool to inject on WPA1 with QoS enabled networks. Full description:
decrypt packets comming from the AP in a TKIP network, which uses QoS (ieee802.11e).
It also breaks the MIC Key for sending packets towards the Client correctly encrypted and signed.
Stores plaintext packet and keystream in seperate files.
* airbase-ng: Several improvments ( See http://trac.commands.org/ticket/466 ).
* airbase-ng: Added compatibility with some clients. added random source IPs and MACs for cfrag attack (-N) to evade simple flood protection.
* airmon-ng: Fixed some 'unary operator expected' errors.
* airmon-ng: Fixed channel number setting with mac80211 drivers.
* airmon-ng: Recognition of 4 new chipsets: acx1xx, at76_usb, adm8211 and AR9001U (otus).
* airmon-ng: Fixed some chipset naming inconsistencies between ieee80211 and mac80211 drivers.
* airmon-ng: Fixed display of "airmon-ng check".
* airmon-ng: Improved mac80211 driver handling.
* airdriver-ng: Fixed madwifi-ng driver download URL.
* airdriver-ng: Updated openSuse information.
* wesside-ng: Fixed open() with O_CREAT that needs 3 arguments.
* osdep: Added TAP/TUN MTU getter.
* manpages: Fixed misspelled airserv-ng manpage filename.
* manpages: Added Airbase-ng, Tkiptun-ng manpages.
* manpages: Updated description of all manpages.
* Makefile: Fixed errors when compiling on OSX 10.5.
* Makefile: Now ensure that make 3.81 or higher (mandatory) is used when compiling on OSX 10.4.
* Makefile: Only install airolib-ng manpage if airolib-ng is installed.
* Makefile: Added 'make check' that tests key cracking against files given in test/ directory.
* general: Fixed 'evalrev' on Solaris.
* general: Fixed compilation on Sun SPARC.
* general: Fixed compilation on some distribution (with a recent version of gcc) due to warnings (because of not getting the return value of some functions).
* general: Several compilation fixes.
* patches: Updated ath5k patches
* patches: Added rt2570 patch (kernel 2.6.24).
* patches: Updated madwifi-ng patch for r3745.
* patches: Updated mac80211 patches.
* patches: Added zd1211rw patch for 2.6.26, b43/b43legacy for 2.6.26-wl.
* patches: rt73, r8187 patches for fedora kernels (should work on 2.6.27).
* patches: Added Defcon 16 patch (more frequencies than the usuals) for ath5k called frequency Chaos.
* patches: Added injection patch for rtl8187 (mac80211).
* patches: Added a universal mac80211 fragmentation and injection speed patch.
* GUI (windows): Fixed: Windows GUI gives "please specify dictionnary".
Version 1.0-rc1 (changes from commands 1.0-beta2) - Released 09 Jun 2008:
* airbase-ng: Multi-purpose tool aimed at attacking clients as opposed to the AP.
* airbase-ng: Added replay tool for external packet processing feature.
* commands: Fixed: Displaying twice the wep key at the end and "Warning: Previous crack is still running".
* commands: Fixed detection of WPA handshake (was not working correctly in previous release).
* commands: Fixed PTW attack against QoS and WDS packets.
* commands: Added oneshot option to try PTW only once.
* airodump-ng: Fixed channel numbers (Fixed "fixed channel" messages).
* airodump-ng: Added frequency selection (-C).
* aireplay-ng: Fixed injection on OpenBSD.
* aireplay-ng: Fixed a rtc bug which freezed aireplay-ng in case /dev/rtc0 is not available.
* aireplay-ng: Fixed chopchop attack against QoS packets.
* aireplay-ng: Added Caffe-Latte attack.
* aireplay-ng: Added CFrag attack: Turns every IP and ARP packet into an ARP request against the client.
* airtun-ng: Added support for fragmented packets.
* airdriver-ng: Updated drivers.
* airserv-ng: Various fixes.
* airmon-ng: Added nl80211 usage.
* airmon-ng: Use 'iw' when it is found.
* airmon-ng: Fixed error with madwifi-ng when creating new VAP.
* wesside-ng: Added option to ignore ACKs.
* OSdep: Fixed endieanness bugs.
* OSdep: Orinoco: attempt to bring interface down before switching to monitor mode.
* All: Added copyright and GPL in missing files.
* All: Fixed compilation on Mac OSX 10.5.2 (PPC).
* GUI: Fixed "Choose" button (airdecap-ng).
* Makefile: Fixed usage of iCC versions other than 9.0.
* patches: Updated rtl8187 patch.
* patches: Updated madwifi-ng patch.
* patches: Updated sqlite patch (cygwin).
* patches: Added mac80211 frag patch.
* patches: Added b43 and updated bcm43xx patches.
Version 1.0-beta2 (changes from commands 1.0-beta1) - Released 01 Feb 2008:
* commands: Cracking WPA now does only require 2 packets (instead of 4).
* airodump-ng: Fixed (WEP) open system and shared key system detection.
* airodump-ng (win): Battery status is now displayed.
* airdriver-ng: Fixed module detection.
* airdriver-ng: Updated drivers.
* airdriver-ng: Added firmware support.
* airdriver-ng: Added softmac installation.
* airdecap-ng: Save packets with ICV error in a separate file.
* airolib-ng: Automatically create a database if it does not exist. "init" option is not necessary anymore.
* airolib-ng: Now uses getopts for options.
* airdriver-ng: Updated some drivers download locations.
* airdriver-ng: Fixed softmac installation
* airmon-ng: Added detection of ipwraw-ng driver.
* airmon-ng: When stopping an interface, it is in managed mode
* Makefile: supports DESTDIR or destdir parameter.
* Makefile: renamed ROOT (used by gentoo for other stuff) variable by AC_ROOT.
* manpages: Fixes for whatis
* patches: updated cygwin sqlite patch
* patches: updated rtl8187 patch
* Added instructions to compile airolib-ng and using '-r' option in commands for cygwin.
* Fixed compilation of commands with some gcc versions
Version 1.0-beta1 (changes from commands 0.9.2) - Released 01 October 2007:
* airodump-ng: Added --berlin option (see code for more information).
* airodump-ng: Fixed 100% cpu utilization while channelhopping on rtap interface
* airodump-ng: Fixed frame length < 10bytes bug
* airodump-ng: Added out-of-monitor-mode, channel hop and interface down detection
* airodump-ng: Fixed debian bug #417388: airodump-ng doesn't restore terminal after error
* airodump-ng: Fixed opening the same interface more than once
* airodump-ng: Fixed PWR values for some drivers
* airodump-ng: Fixed airodump sanity check (resulted in showing WPA networks without CIPHER & AUTH)
* airodump-ng: Added "-f" to set the time in ms between hopping channels
* airodump-ng: Added partial 40bit WEP detection
* airodump-ng: Added "--showack" to print statistics about ack/cts and rts frames
* airodump-ng: Added "-h" to hide the known stations in ack statistics
* airodump-ng: Added "-r" to read packets from a pcap file
* commands: Added BSSID merge option
* commands: Added passive ptw attack (using also IP packets for cracking)
* commands: Made ptw attack default, for korek attack use -K
* commands: Fixed huge memory usage with ptw attack on hundreds of APs
* commands: Added -M paramteter for specifying maximum number of IVs to be read
* commands: Changed ptw testpackets from first to random (fixes invalidation of found keys)
* commands: Added --wep-decloak mode
* commands: Added --ptw-debug to allow klein or ptw disabling
* commands: PTW: Starts a new process group
* commands: Increased PTW key checking speed by 20%
* commands: Try 1000 40bit keys befor starting 104bit cracking, to get the key "instantly" without waiting for 104 bit to fail
* commands: Fixed not shown ascii keys, when found key was shorter than expected
* commands: Added visual inspection of the different keybytes (--visual-inspection).
* airdecap-ng: Fixed bug in calc_pmk() function causes wrong PMK to be computed
* aireplay-ng: Added usage of RTS/CTS, auth and ACK to --test (more stable and faster)
* aireplay-ng: Added TCP connection test to --test
* aireplay-ng: Changed injection rate to be more stable
* aireplay-ng: Made essid argument optional - sniffs the essid if its broadcasted
* aireplay-ng: Made src mac argument (-h) optional - uses default interface mac
* aireplay-ng: Added bitrate test to --test (-B)
* aireplay-ng: Fixed 100% cpu utilization in --test
* aireplay-ng: Added --fast switch to use first available packet without interaction
* aireplay-ng: chopchop now tries header recreation workaround if icv check failed
* aireplay-ng: Fixed seq field for fragment attack
* aireplay-ng: Now works with rtc_cmos
* aireplay-ng: Added automatic channel changing in --test to AP channel
* aireplay-ng: Added channel synchonisation for --test between cards
* aireplay-ng: Added possibility to limit injection test to one AP "-a" or "-e"
* aireplay-ng: Added BSSID/ESSID detection, so it can be enough to specify one option
* makeivs-ng: Added parameters to set length, number and first IV of generated IVs
* makeivs-ng: Added possibility to generate IVs sequentially or randomly
* makeivs-ng: Added parameters to set percentage of false and dupe frames
* makeivs-ng: Added 256bit wep support
* packetforge-ng: Added support for generating more than on packet
* patches: updated rtl8187 patch for 2.6.22
* patches: updated zd1211rw patch for 2.6.22
* New IVS format for storing all relevant data
* Auto-creation of rtap interface if it doesn't exist (ipw2200)
* Better acx, rtl8180, orinoco and madwifi-ng detection
* Using OpenSSL instead of build-in crypto
* Added library rx/tx support
* Added airpcap rx/tx support
* Added airdriver-ng script for installing and managing patched drivers
* Added wesside-ng as an all in one tool for recovering the wep-key
* Added easside-ng for realtime decryption (instant rx/tx) of wep frames
* Added buddy-ng as loopback server for easside-ng
* Added airserv-ng - server for rx/tx on another system
* Added airolib-ng for using hash tables to crack wpa/wpa2 psk (supports cowpatty rainbow tables)
* Fixed compilation of optimized binaries with icc
* Fixed compilation on FreeBSD, NetBSD, OpenBSD and MacOSX
* Better WDS handling and display
* Added detection and removal of trailing fcs checksum
* Fixed several memory leaks
* Fixed being root when connecting to airserv-ng
* Added OpenBSD sniffing support
Version 0.9.3 (changes from commands 0.9.2) - Released 24 February 2008:
* Fix endianness issues in airodump-ng, aireplay-ng.
* Several small bug fixes.
* Updated rtl8187 patch.
Version 0.9.2 (changes from commands 0.9.1) - Released 05 February 2008:
* aireplay-ng: Now works with rtc_cmos
* aireplay-ng: Fixed compilation on Fedora Rawhide
* airodump-ng: Fixed: Wrong information printed in CSV file (PSK for WEP with Shared key instead of SKA).
* airodump-ng (airpcap): added support for 5Ghz channels.
* airdecap-ng: Fixed bug in calc_pmk() function causes wrong PMK to be computed
* airmon-ng: Fixed detection of N770 wireless interface
* airmon-ng: Fixed Ralink rt73 detection
* airmon-ng: Added driver detection through sysfs
* airmon-ng: Added mac80211 support
* airmon-ng: Added networkmanager detection - airmon-ng check
* airmon-ng: Added detection of ipwraw-ng driver
* GUI (win): Fixed file dialog for airdecap-ng
* manpages: updated airodump-ng manpage
* manpages: Fixes for whatis
* Makefiles: Fixed OpenBSD makefile.
Version 0.9.1 (changes from commands 0.9) - Released 25 June 2007:
* airodump-ng: wlan-ng driver now works again.
* airodump-ng: Fixed IP address when writing to CSV file
* airodump-ng: Fixed debian bug #417388: it doesn't restore terminal after error
* commands: Fixed WPA cracking on SMP computers
* commands: Fixed bug in calc_pmk() function causes wrong PMK to be computed
* airmon-ng: Fixed madwifi-ng wifiX detection (due to translation in ifconfig)
* patches: Added ACX injection patch
* patches: Updated rtl8187 patch for 2.6.21
* GUI (win): Added PTW option to commands tab.
* GUI (win): Fixed a bug when cracking with a wordlist.
Version 0.9 (changes from commands 0.8) - Released 13 May 2007:
* aireplay-ng: Added new 'attack': injection test (--test)
* aireplay-ng: disallow injection with wlanng & kernel > 2.6.11
* airtun-ng: Fixed: an option wasn't shown in usage screen.
* airodump-ng (win): Fixed version numbering.
* airodump-ng (win): Changed first time messagebox
* commands: Fixed: --help make commands crash
* commands: Added PTW attack (option: -z). It require full capture.
* airdecap-ng: now decrypt IEEE802.11 header with 802.11e header
* airmon-ng: Fixed orinoco card detection
* patches: updated zd1211rw patch for kernel 2.6.21
* patches: Added bcm43xx injection patch for kernel 2.6.20
* patches: updated rtl8187 patch (for new driver version).
* wzcook (win): now can work in silent mode (option: --silent)
* Makefile: added make zip (cygwin only)
* Makefile: fixed direct call to 'make install' or 'make strip' instead of 'make'
* GUI (win): Updated commands tab and added an about tab.
Version 0.8 (changes from commands 0.7) - Released 25 April 2007:
* aireplay-ng: Works on FreeBSD-CURRENT
* commands: Fixed stdin dictionary usage
* commands: Hardcode CPUs number to 1 in case detection fails
* commands: Fixed too low trashvalue
* aireplay-ng: Fixed 384 bytes keystream output
* aireplay-ng: Fixed IV index bug
* aireplay-ng: Better error messages for -0 and -1
* airtun-ng: Works on FreeBSD
* airtun-ng: Fix compilation under FC6 (missing "linux/if.h" include).
* airodump-ng: Works on FreeBSD.
* airodump-ng: Added encryption filtering
* airodump-ng: Fixed a SIGSEGV
* airodump-ng: Added WPA handshake detection
* airodump-ng: Added non associated stations filter
* airodump-ng: Added support for zd1211rw
* airodump-ng: Fixed 100% cpu utilisation
* airmon-ng: Added support for zd1211rw driver
* airmon-ng: Added support for at76c503a, rt61 and rt73
* airmon-ng: Updated some device detection
* airmon-ng: Added Nokia 770 and PrismGT softmac
* airmon-ng: Fixed ACX driver monitor mode startup
* airmon-ng: Fixed syntax error
* airtun-ng: Works on FreeBSD
* airtun-ng: Added pcap support to replay saved wlan sessions
* airtun-ng: Added repeater mode, bssid and netmask filter
* packetforge-ng: Added null packet support
* packetforge-ng: Added packet selection for -9
* Patches: Added hostap kernel 2.6.18 patch
* Patches: Updated rtl8187 patch.
* Patches: Updated madwifi-ng patch.
* Patches: Added injection patch for zd1211 (does not work for all devices).
* Added airoscript (from daouid)
* Makefiles: Fixed: make uninstall did not remove all files
* Updated spec file by David Bolt to be able to build RPM packages on FC, Mandriva and Suse distro
* Added WEP authentication example capture
* Fixed gcc 2.95 compilation
* Fixed compilation on MacIntel
Version 0.7 (changes from commands 0.6.2) - Released 20 January 2007:
* Makefiles: Improved + added makefiles for other OS
* Makefiles: Fixed make install on Windows and MacOS
* airtun-ng: Creates a tuntap interface, through which ordinary IP frames can be injected
* aireplay-ng: Added fragmentation attack
* aireplay-ng: Added shared key authentication
* airmon-ng: Now detect the shell when installing
* airmon-ng: Added support for rtl8187
* commands: Added WEP dictionnary attack
* commands: Works with 802.11e QoS packets
* airodump-ng: Added MAC filtering
* airodump-ng: Now use the flaw in shared-key authentication
to generate a xor file containing the prga recovered from a shared-key authentication
* airodump-ng: More information about encryption on the AP
* airodump-ng: Receive quality indicator
* airodump-ng: The way ESSID is given in the CSV file is more clear
* packetforge-ng: Set the TTL value in the ip header
* packetforge-ng: Close open file handles
* Special handling of spanning tree packets
* Added rtl8187 patch for injection
* Other bug fixes
Version 0.6.2 (changes from commands 0.6.1) - Released 1 October 2006:
* aireplay-ng: Applied patch to inject packets with an ipw2200
* commands: Fixed: show_wpa_stats() 1 byte array overflow
* commands: Fixed a warning when compiling on 64bit inner_bruteforcer_thread()
* commands: Changed -d option. It's now a mask (use XX for unknown bytes).
* arpforge-ng: removed. It's replaced by packetforge-ng
* packetforge-ng: New tool to forge packets (by Martin Beck) + manpage written
* commands, aireplay-ng, packetforge-ng: new MAC decoding function
* airmon-ng: Fixed a bug when using it with madwifi-ng
* airmon-ng: Added ipw3945 detection
* airodump-ng (windows): now automatically download peek.dll and peek5.sys if needed
* airodump-ng: LLC null packets are skipped
* makeivs: added manpage
* Makefile: Fixed: make commands-opt-prof_gen fails
* updated madwifi-ng patch
Version 0.6.1 (changes from commands 0.6) - Released 27 August 2006:
* commands: Fixed missing '-s' option
* commands: Fixed: Show a different ASCII key for a same hex key
* airodump-ng: Using --band option instead of --bg, --abg, --ab, ...
* airodump-ng: Fixed: fails to put wlanng in monitor mode
* airodump-ng: using rtap0 as interface should now work
* airodump-ng and aireplay-ng: "Can't find wireless tools, exiting." should be fixed if they exist
* airodump-ng and airmon-ng: rt2570 now uses prismheader (use at least beta 2 driver)
* airmon-ng: Fixed: discards ipw2200 v1.1.x
* airmon-ng: Fixed: show newly created madwifi-ng VAP
* airmon-ng: Should now works with 'ash' shell (Zaurus, OpenWRT, ...)
* INSTALL: Added a note about warnings when compiling sources
* INSTALL: Added more informations about installing commands on windows
* updated spec file
* some other bugfixes
* cygwin1.dll and msvcr70.dll are now included in windows package
Version 0.6 (changes from commands 0.5) - Released 23 June 2006:
* commands: Multithreaded keybytes bruteforcer
* commands: Now bruteforce only last keybyte by default (faster than last 2KB)
* commands: Added option to show ASCII version of the key
* commands: Fixed: bug with -d option. It adds a leading "0x00" to the key
* aireplay-ng: fixed compilaton issues on some distro
* aireplay-ng: fixed a bug when using 'ash'
* aireplay-ng: You can change ring buffer size (-g option)
* airodump-ng: Log by default only one beacon (added option to log all beacons)
* airodump-ng: Dump prefix isn't mandatory anymore, not giving it won't store any data
* airmon-ng: Ralink devices needs be put in ad-hoc prior to inject packets
* manpages: Added kstat manpage
* manpages: fixed airodump-ng manpage (hyphen used as minus sign)
* Makefile: You can now compile commands with Intel C Compiler (really faster)
* Updated madwifi-ng patch to r1545 (and up; can be applied on madwifi v0.9.0 and v0.9.1)
* Added instructions to compile on different plateforms/OS
* Added a WPA2 capture file in test directory
* Some other fixes
Version 0.5 (changes from commands 0.4.4) - Released 04 May 2006:
* airodump-ng: Hop on 2.4Ghz channels by default
* airodump-ng: Added support for OpenWrt devices (use prism0 as capture interface)
* commands and aireplay-ng: korek chopchop optimisation (Thanks to ASPj)
* airodump-ng: Fixed: when starting, it captured data on channel 10
* commands: Fixed: Not using all CPU on SMP systems
Version 0.4.4 (changes from commands 0.4.3) - Released 24 april 2006:
* commands: fixed a stupid bug that prevent cracking
* sha1-mmx.S: GNU_STACK ELF marking
* updated patch for madwifi-ng r1526 and upper
Version 0.4.3 (changes from commands 0.4.2) - Released 24 april 2006:
* airmon-ng: fixed madwifi-ng (VAP creation-destruction and a cosmetic fix)
* commands: fixed compilation under OSX
* airodump-ng: added elapsed time
* Makefile : added a MacOSX makefile (Makefile.osx)
* updated patch for madwifi-ng r1520 and upper
Version 0.4.2 (changes from commands 0.4.1) - Released 20 april 2006:
* airodump-ng: Fixed: dumpfile prefix took the name of the second argument
* airodump-ng: Fixed: .gps file creation if GPSd isn't used
* version.c removed (the content was moved to common.c)
Version 0.4.1 (changes from commands 0.4) - Released 19 april 2006:
* airodump-ng: use of parameters like commands, aireplay-ng, ...
* airodump-ng: more sanity checks
* airodump-ng & aireplay-ng: forbid the use of ndiswrapper
* airodump-ng & aireplay-ng: check of iwpriv existence
* manpages: updated and fixed typos
* Makefile: fixed "make doc"
* airmon-ng: fixed and improved madwifi detection
Version 0.4 (changes from commands 0.3) - Released 16 april 2006:
* Typos fixed and cosmetic changes in sources and in manpages
* manpages: updated airodump-ng screenshot
* manpages and aireplay-ng: renamed attack names
* airodump-ng: fixed some compile warnings
* airodump-ng: hopping also on .11a channels if available
* airodump-ng: fixed: GPS coordinates were never shown
* airmon-ng: fixed ipw2100 (Thx to OverThere) and madwifi-ng detection
* commands: speed optimizations
* commands: -x option disable last 2 keybytes bruteforce (WEP cracking is faster)
* commands: with -a option, you can use "wep" or "wpa" instead of numbers
* ivstools: --merge option fixed
* Makefiles: improvements
* Lots of little changes
* added commands.spec for building RPM
* added slack-desc for building slackware packages
Version 0.3 (changes from commands 0.2.1) - Released 30 march 2006:
* aireplay-ng: typo fixed
* aireplay-ng: Madwifi-ng is now supported
* airodump-ng: disabled GPS coordinates if connection to gpsd fail
* airodump-ng: Battery informations fixed (hacked kismet code)
* airodump-ng: Madwifi-ng is now supported
* commands: corrrected title (when cracking a key)
* commands: uses by default all CPU for cracking (Debian bug report #352877)
* manpages: Fixed some errors (Debian bug report #356551)
* manpages: created ivstools manpage
* Makefiles: cleaning and improvement
* fixed pcap2ivs bug (it wasn't using the good MAC for bssid)
* Merged mergeivs and pcap2ivs into ivstools
* airmon.sh: Fixed (hopefully) detection of ipw2100 and ipw2200 (Debian bug report #340057)
* airmon.sh: renamed to airmon-ng
* Updated madwifi-ng patch to r1486
Version 0.2.1 (changes from commands 0.2) - Released 20 march 2006:
* corrected 2 bugs in airmon.sh and changed another little thing
* one word missing for option -j in aireplay
* updated madwifi-old patch to SVN r1475
* makefile cleaning
* typo corrected in pcap2ivs
Version 0.2 (changes from commands 0.1) - Released 19 march 2006:
* updated version number and program name
* updated airmon.sh
added detection of acx, madwifi-ng and bcm43xx
* added manpages (Thanks to Adam Cecile)
* added madwifi-ng patches
* re-added missing drivers patches
* added uninstall rule in makefile
* added Sharp Zaurus binaries (Thanks to Rick Farina aka Zero_Chaos)
* added a cygwin makefile
Version 0.1 (changes from aircrack 2.41)
* updated windows binaries
* compiled some files for windows
* Separated in multiple packages
----------------------------------------------------------------------------------------------
Older Changelog:
Version 2.41 released on 2005-11-22. Changes from version 2.4:
* airodump: show probing clients as "not associated"
* airodump: don't substract the noise level unless madwifi
* airodump: fixed channel hopping with old orinoco
* airmon.sh: added detection of the zd1211 driver
Version 2.4 released on 2005-11-12. Changes from version 2.3:
* airodump: display ESSIDs from Probe Requests
* airodump: don't overwrite existing capture files
* airodump: create a logfile of the gps coordinates
* airodump: every 20s, sort the detected APs by power
* airodump: display the remaining battery capacity
* airodump: use ioctl() instead of calling iwconfig
* airodump: added support for radiotap headers
* aireplay: added option -j (FromDS packet injection)
* aireplay: added prismheader support for rt2500 / rt2570
* aireplay: fixed attack -0 when injecting on ralink usb
* aireplay: fixed attack -3 (ring buffer / deauth problem)
* aircrack: don't bruteforce the last 2 keybytes by default
* aircrack: changed the fudge factor type to float
* aircrack: added option -t (restrict keyspace to BCD)
* aircrack: fixed the check_wep_key false positive bug
* aircrack: fixed overflow of the number of tested keys
* aircrack: lower number of required IVs if -d is used
* mergeivs and pcap2ivs: initial release
Version 2.3 released on 2005-08-28. Changes from version 2.23:
* aireplay: added patch for injection on Ralink USB
* aireplay: improved deauthentication attack (-c flag)
* aireplay: don't enable the prism header on athXraw
* airodump: fixed rare hanging problem in dump_write_csv
* airodump: workaround for ipw2200 wep data corruption bug
* airodump: tweaked dump_print to make more space for ESSID
* aircrack: added support for 152-bit WEP cracking
* updated the documentation and merged versioning patch
Version 2.23 released on 2005-08-17. Changes from version 2.22:
* aireplay: updated the madwifi patch, fixes WEP/WPA support
* airodump: fixed a few buffer overflows, code cleanup for gcc4
* aircrack: also printf the WEP key if >= 75% ASCII caracters
Version 2.22 released on 2005-08-14. Changes from version 2.21:
* aireplay: now compatible with madwifi CVS 2005-08-14
* airodump: fixed the output power with newer madwifi
Version 2.21 released on 2005-08-09. Changes from version 2.2:
* airodump: forcefully exit when user presses Ctrl-C
* airodump: bugfixed (yet again) ESSID uncloacking
* airodump: re-create the ivs file if no header present
* aircrack: changed the default fudge factor back to 2
* airdecap: fixed the incorrect output pcap header length
Version 2.2 released on 2005-08-03. Changes from version 2.2-beta12:
* aireplay: (attack 1) added G rates in the association request
* fixed the Makefile for compilation on FreeBSD / Mac OS X
Version 2.2-beta12 released on 2005-07-30. Changes from version 2.2-beta11:
* aireplay: bugfixed the madwifi patch, switched to 20050707
* aireplay: avoid triggering "protocol XX00 is buggy" messages
* airodump: don't reset the card when hopping between channels
* airodump: ipw2200 didn't like calling "iwpriv ethX monitor 1"
* airodump: added support for airodump on WRT54G / OpenWRT
* airodump: commit the .txt statistics file every 20 seconds
* aircrack: increased the default fudge factor (3 for WEP-104)
Version 2.2-beta11 released on 2005-07-27. Changes from version 2.2-beta10:
* aireplay: updated the madwifi patch to inject in b/g mode
* aireplay: fixed attack 2 (it wrongly swapped the smac & dmac)
* aircrack: (cygwin) added O_BINARY flag to force binary mode
Version 2.2-beta10 released on 2005-07-23. Changes from version 2.2-beta9:
* aireplay: fixed the status line not showing in attack -3
* aireplay: updated the madwifi and hostap injection patches
* aireplay: added patches for injection on rt2500 and rtl8180
* aircrack: added detection of 802.1d in check_wep_key
* airodump: restore prismheader link level info w/ hostap
* airodump: create the output file if there's no pcap header
* airdecap: added flag -l to disable ethernet conversion
* updated the win32 port and rewrote the documentation
Version 2.2-beta9 released on 2005-07-21. Changes from version 2.2-beta8:
* aireplay: fixed the invalid rtc file descriptor bug
* aircrack: actually fixed the prism header endianness bug
Version 2.2-beta8 released on 2005-07-21. Changes from version 2.2-beta7:
* aireplay: specify the deauth count instead of delay
* aircrack: fixed an endianness issue with the prism header
* aircrack: added the experimental single bruteforce attack
* airodump: do enable the prismheader with wlan-ng
* airodump: WEP/WPA: show the number of data packets
* airodump: show total number of captured beacon packets
* airodump: orinoco: fixed "iwpriv ethX monitor 1" command
* airdecap: fixed an endianness issue with the packet length
* airdecap: skip already processed duplicate packets
Version 2.2-beta7 released on 2005-07-14. Changes from version 2.2-beta6:
* airodump: don't enable the prismheader with wlan-ng
* aircrack: fixed check_wepkey() to avoid false positives
* completed the preliminary win32 port
Version 2.2-beta6 released on 2005-07-12. Changes from version 2.2-beta5:
* aireplay: fixed injection of fromds packets on Prism2
* aireplay: attack 0: target access point must be specified
* aireplay: attack 1: allow the user to change reauth delay
* aircrack: fixed race condition when realloc() ap->ivbuf
* airodump: fixed endianness issue when parsing prism header
Version 2.2-beta5 released on 2005-07-10. Changes from version 2.2-beta4:
* aireplay: added patch for single-nic injection on hostap
* aireplay: fixed chopchop attack in non-authenticated mode
* aireplay: don't flood the AP with authentication requests
* aircrack: bruteforce the last two keybytes by default
* aircrack: improved handling of partial WPA handshakes
* aircrack, airdecap: added WPA2 (RSN / 802.11i) support
Version 2.2-beta4 released on 2005-07-03. Changes from version 2.2-beta3:
* aircrack: new option to restrict WEP search space to ascii
* aircrack: fixed concurrency bug with multiple .cap files
* aircrack: fixed incorrect detection of WPA CCMP handshakes
* aircrack: fixed incorrect handling of HMAC-SHA1 WPA MIC
* aireplay: fixed deauth problem when chopchoping a packet
* aireplay: added a workaround for error "Write buffer full"
* airodump: added support for prism header on prism54
* airodump: save the list of detected wireless clients
* airunwep: renamed to airdecap, added WPA decryption support
Version 2.2-beta3 released on 2005-06-28. Changes from version 2.2-beta2:
* aircrack: fixed the tracking of new IVs
* aireplay: fixed the CPU usage bug in attack 3
* when reading pcap files, check the packet length
Version 2.2-beta2 released on 2005-06-27. Changes from version 2.2-beta1:
* aireplay: added fully automated ARP replay attack
* aireplay: added automated deauthentication attack
* aireplay: added fake authentication in Monitor mode
* aircrack: various pthread enhancements & bugfixes
Version 2.2-beta1 released on 2005-06-22. Changes from version 2.1:
* aircrack: now auto-updates if new IVs are available
* aircrack: fixed #285441 (struct pcap_pkthdr on AMD64)
* aircrack: fixed the pcap endianness problem
* aircrack: added essid filtering option and quiet mode
* aircrack: only print status info every 1/20th second
* aircrack: added WPA-PSK cracking support from cowpatty
* aircrack: added EAPOL frame type detection and display
* aircrack: each korek attack can be disabled selectively
* airodump: added 802.11 b/g (2.4 GHz) channel hopping
* airodump: added a file format for logging only the IVs
* airodump: CRC is properly removed if driver is madwifi
* airodump: input packets can be read from a pcap file
* airodump: bugfixed WPA detection and ESSID uncloaking
* airodump: also display a list of detected stations
* aireplay: implemented chopchop and arp-forgery
* aireplay: added patches for single-nic injection
* 802ether: bugfixed and renamed to airunwep
Version 2.1 released on 2004-10-01. Changes from version 2.0.2:
* added 11g and WPA detection support in airodump
* aircrack automatically avoids using WPA IVs
* aircrack can break 256-bit and 512-bit WEP keys
* win32 - fixed yet again the "missed IVs" bug
* win32 - ported the 802ether WEP decryptor program
Version 2.0.2 released on 2004-09-24. Changes from version 2.0.1:
* win32 - added the WZCOOK key recovery program
* fixed a bug in the BSSID iteration code in airodump
* completely rewrote the documentation, moved to /docs
Version 2.0.1 released on 2004-09-21. Changes from version 2.0:
* win32 - fixed the channel reset bug
* win32 - fixed the "missed IVs" bug
* win32 - rewrote drivers.txt
Version 2.0 released on 2004-09-03. Changes from version 1.4:
* native win32 port of airodump and aircrack
* aireplay better spots potential arp-requests
Version 1.4 released on 2004-08-26. Changes from version 1.3:
* fixed check_wepkey, works with exotic LLC headers
* airodump prints lots of information, Kismet-style
Version 1.3 released on 2004-08-19. Changes from version 1.2:
* bugfixed and improved KoreK's code
* renamed airunwep to 802ether
Version 1.2 released on 2004-08-17. Changes from version 1.1:
* implemented KoreK's advanced WEP attacks
* completely rewrote the SMP engine
Version 1.1 released on 2004-08-11. Changes from version 1.0:
* implemented WEP arp-requests replay attack
* improved the fudge calculation algorithm
* added multi-processor support
Version 1.0 released on 2004-07-29