Set-up:
virtual box with Kali and eth0 (internet), network dapter 1 set to bridged mode so I access my internal network ip-range
wlan0 card as USB device connected
Ip a:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 08:00:27:22:46:4f brd ff:ff:ff:ff:ff:ff
inet 192.168.1.191/24 brd 192.168.1.255 scope global dynamic noprefixroute eth0
valid_lft 2069sec preferred_lft 2069sec
inet6 fe80::5fd4:c5a5:7613:f645/64 scope link noprefixroute
valid_lft forever preferred_lft forever
3: wlan0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
link/ether 56:c4:8b:7a:4b:1c brd ff:ff:ff:ff:ff:ff permaddr 20:4e:7f:e3:7a:8f
hostapd.conf:
nterface=wlan0
driver=nl80211
ssid=Free
hw_mode=g
channel=2
macaddr_acl=0
max_num_sta=1
ignore_broadcast_ssid=0
instructions from book:
here I use sudo airmon-ng check to find PID that I actually can kill without destroying my eth0 inernet connection by killing networkmanager, so the only other process to kill then is wpa_supplicant
output hostapd command when trying to connect to AP:
┌──(kali㉿kali)-[~]
└─$ sudo hostapd /etc/hostapd/hostapd.conf
wlan0: interface state UNINITIALIZED->ENABLED
wlan0: AP-ENABLED
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: authenticated
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: associated (aid 1)
wlan0: AP-STA-CONNECTED 9a:fd:54:95:ac:db
wlan0: STA 9a:fd:54:95:ac:db RADIUS: starting accounting session F92FC1F9F12AED66
wlan0: AP-STA-DISCONNECTED 9a:fd:54:95:ac:db
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: disassociated
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: deauthenticated due to inactivity (timer DEAUTH/REMOVE)
virtual box with Kali and eth0 (internet), network dapter 1 set to bridged mode so I access my internal network ip-range
wlan0 card as USB device connected
Ip a:
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
valid_lft forever preferred_lft forever
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
link/ether 08:00:27:22:46:4f brd ff:ff:ff:ff:ff:ff
inet 192.168.1.191/24 brd 192.168.1.255 scope global dynamic noprefixroute eth0
valid_lft 2069sec preferred_lft 2069sec
inet6 fe80::5fd4:c5a5:7613:f645/64 scope link noprefixroute
valid_lft forever preferred_lft forever
3: wlan0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc mq state DOWN group default qlen 1000
link/ether 56:c4:8b:7a:4b:1c brd ff:ff:ff:ff:ff:ff permaddr 20:4e:7f:e3:7a:8f
hostapd.conf:
nterface=wlan0
driver=nl80211
ssid=Free
hw_mode=g
channel=2
macaddr_acl=0
max_num_sta=1
ignore_broadcast_ssid=0
instructions from book:
- set wlan0 to another ip-adress on the same network as eth0:
- set up port forwarding:
- kill all processes that might interfere:
here I use sudo airmon-ng check to find PID that I actually can kill without destroying my eth0 inernet connection by killing networkmanager, so the only other process to kill then is wpa_supplicant
- thereafter I start hostapd and output shown below when I try to connect to AP, I don't seem to get connected for som reason
output hostapd command when trying to connect to AP:
┌──(kali㉿kali)-[~]
└─$ sudo hostapd /etc/hostapd/hostapd.conf
wlan0: interface state UNINITIALIZED->ENABLED
wlan0: AP-ENABLED
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: authenticated
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: associated (aid 1)
wlan0: AP-STA-CONNECTED 9a:fd:54:95:ac:db
wlan0: STA 9a:fd:54:95:ac:db RADIUS: starting accounting session F92FC1F9F12AED66
wlan0: AP-STA-DISCONNECTED 9a:fd:54:95:ac:db
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: disassociated
wlan0: STA 9a:fd:54:95:ac:db IEEE 802.11: deauthenticated due to inactivity (timer DEAUTH/REMOVE)