dwepdump v0.2
by h1kari - (c) Dachb0den Labs 2002


dwepdump is a pcap based packet collection application modelled towards
collecting packets for use with dwepcrack for both brute forcing wep keys
as well as collecting packets for use with the weak ksa attack. additionally
you can use dwepdump to converge pcap logfiles for use with the weak ksa attack
in dwepdump.

note: as of v0.2, only 3 key statistics are shown. generally, once all three of
the key slots have reached 60 (0x3c), you should be able to crack the key with
very little trouble. however, in many cases, > 20 (0x14) will suffice.


current features of dwepdump include:

- logging only weak keys for use with dwepcrack -w
- real time statistics on how many weak ivs have been found
  (n.x -> n:x when x >= 60 so you know when to start cracking :-)
- normal pcap dumpfile logging
- ability to specify the max packet size so you only capture small packets
  (so the cracking is faster)
- not needing to specify a device, so you can take multiple pcap files and
  filter them together into one (useful if you have a ton of standard pcap
  dumps and want to filter out the weak ivs, or converge weak iv dumps).
- use of iv filtering methods outlined in "Practical Exploitation of RC4
  Weaknesses in WEP Environments" for faster capture time.


dwepdump is provided under a bsd license, full license information can be
found in LICENSE.


bsd-airtools v0.2 - http://www.dachb0den.com - h1kari@dachb0den.com
