man airodump (Commandes) - airodump is a packet dump tool for aircrack.
NAME
airodump is a packet dump tool for aircrack.
SYNOPSIS
airodump <interface name or pcap filename> <output prefix> <channel> [IVs flag]
DESCRIPTION
airodump is a packet dump tool for aircrack. It allows dumping packets directly from WLAN interface or extracting IVs from a pcap file.
CAPTURING PACKETS
Example:
airodump
ath0 out 0
(Replace ath0 with your WLAN interface, out with the dump file name, 0 with the channel).
The channel "0" above indicates that airodump should perform channel hopping, i.e., walk across each consecutive channel in a loop. The channel number is ignored if the source if a capture file.
Here's an example screenshot:
-----------------------------------------------------------------------
BSSID PWR Packets LAN IP / # IVs CH MB ENC ESSID
00:13:10:30:24:9C 59 159 3 7 48 WEP 12345
BSSID STATION PWR Packets ESSID
00:13:10:30:24:9C 00:09:5B:EB:C5:2B 60 7 12345
-----------------------------------------------------------------------
- BSSID is the Access Point MAC address - PWR is the signal power, which depends on the driver - Packets is the total number of packets - LAN IP / # IVs: self-explanatory - CH is the channel on which the AP is setup - MB is the maximum communication speed. - ENC is the encryption protocol in use: OPN = open, WEP? = WEP or WPA (no data), WEP, WPA - ESSID is the network identifier
The first part is the detected access points (in this case, only 00:13:10:30:24:9C on channel 7 with WEP encryption). It also displays a list of detected wireless clients ("stations"), in this case 00:09:5B:EB:C5:2B. By relying on the signal power, one can even physically pinpoint the location of a given station.
ANALYSING A CAPTURE FILE
Example: airodump in.cap out 0
CONVERTING CAPTURE FILE INTO IVS FILE
Example: airodump in.cap out 0
Converts a huge "out.cap" capture file into an "out" ivs file (only useful for later WEP-cracking).
AUTHOR
This manual page was written by Adam Cecile <gandalf@le-vert.net> for the Debian system (but may be used by others). Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 any later version published by the Free Software Foundation On Debian systems, the complete text of the GNU General Public License can be found in /usr/share/common-licenses/GPL.