Broadcom Wl Driver Monitor Mode
The official Broadcom STA/wl driver DOES NOT support monitor mode You are using the Broadcom STA (wl) official driver; this does not support monitor or promiscuous modes (regardless of whatever airmon-ng tells you.).
Broadcom Wireless Drivers Download
Hi,
I use 2 drivers when I can.... wl for just internet browsing and ndiswrapper-1.55 with the bcmmon patch for monitor mode.
For the monitor mode,
1) go to this site: seclists.org/fulldisclosure/2008/Nov/506
2) download bcmmon.tar.bz2 (which includes the bcmwl5.inf, bcmwl5.sys, and bcmmon.diff files), then
3) download ndiswrapper-1.55 from the sourceforge site. Then,
4) copy bcmmon.diff in the bcmmon.tar.bz2 file to the ndiswrapper-1.55 directory.
5) Run 'patch -p2 < ./bcmmon.diff' in the ndiswrapper-1.55 directory
6) Compile the code for ndiswrapper, then load the ndiswrapper module in ndiswrapper-1.55/driver with 'insmod ./ndiswrapper.ko' + load the inf file into ndiswrapper with 'ndiswrapper -i bcmwl5.inf'
7) Download the aircrack-ng 1.1 source code
8) go to src/osdep/ in the aircrack-ng source tree and edit linux.c with ViM
9) comment out lines 164-175 and 1405-1409 (these lines make up the function is_ndiswrapper() and the 'exit if ndiswrapper' code.).
10) Compile aircrack-ng with make
11) Congratulations, you have a working monitor mode with bcm4328 on linux. Now you can use 'airodump-ng -w dumpfile wlan0' to capture 802.11 frames in monitor mode.
Note:
There is some flakyness with the signal level readings pulled off the card. They are much larger than you would expect (by about 100).
The antenna on the xps m1530 is really nice (hyperband multi-antenna), so you should be able to get a good signal on a few different access points in the area.
--
ProfessorKhronos
I use 2 drivers when I can.... wl for just internet browsing and ndiswrapper-1.55 with the bcmmon patch for monitor mode.
For the monitor mode,
1) go to this site: seclists.org/fulldisclosure/2008/Nov/506
2) download bcmmon.tar.bz2 (which includes the bcmwl5.inf, bcmwl5.sys, and bcmmon.diff files), then
3) download ndiswrapper-1.55 from the sourceforge site. Then,
4) copy bcmmon.diff in the bcmmon.tar.bz2 file to the ndiswrapper-1.55 directory.
5) Run 'patch -p2 < ./bcmmon.diff' in the ndiswrapper-1.55 directory
6) Compile the code for ndiswrapper, then load the ndiswrapper module in ndiswrapper-1.55/driver with 'insmod ./ndiswrapper.ko' + load the inf file into ndiswrapper with 'ndiswrapper -i bcmwl5.inf'
7) Download the aircrack-ng 1.1 source code
8) go to src/osdep/ in the aircrack-ng source tree and edit linux.c with ViM
9) comment out lines 164-175 and 1405-1409 (these lines make up the function is_ndiswrapper() and the 'exit if ndiswrapper' code.).
10) Compile aircrack-ng with make
11) Congratulations, you have a working monitor mode with bcm4328 on linux. Now you can use 'airodump-ng -w dumpfile wlan0' to capture 802.11 frames in monitor mode.
Note:
There is some flakyness with the signal level readings pulled off the card. They are much larger than you would expect (by about 100).
The antenna on the xps m1530 is really nice (hyperband multi-antenna), so you should be able to get a good signal on a few different access points in the area.
--
ProfessorKhronos