1
00:00:00,740 --> 00:00:01,490
And this lecture.

2
00:00:01,530 --> 00:00:04,730
I'd like to talk about Wi-Fi bands.

3
00:00:04,830 --> 00:00:11,420
The band of a network defines what frequency it can use to broadcast the signal.

4
00:00:11,430 --> 00:00:17,730
This means it also defines the frequency that the clients or the computers need to be able to support

5
00:00:17,760 --> 00:00:21,710
and use in order to be able to connect to this network.

6
00:00:21,720 --> 00:00:27,820
The two main frequencies used in Wi-Fi networks are two point four and five gigahertz.

7
00:00:28,140 --> 00:00:35,240
Now previously when we use aero dump energy we were only sniffing on the two point four gigahertz frequency

8
00:00:36,570 --> 00:00:41,730
you can see first of all my wireless adapter is in monitor mode mode zero in here.

9
00:00:41,730 --> 00:00:44,130
So if I just do error dump Engine 1 0

10
00:00:49,500 --> 00:00:53,310
you'll see that I can get the wireless networks around me.

11
00:00:53,340 --> 00:01:00,050
But you might have noticed that you won't actually see all the networks around you when you're on air.

12
00:01:00,060 --> 00:01:08,470
Dump energy I'm gonna control see this and if I go here to my normal host machine and it actually has

13
00:01:08,470 --> 00:01:15,520
a built in wireless adapter so it's not as strong as my alpha adapter but if I look for networks you'll

14
00:01:15,520 --> 00:01:18,560
see I actually have much more networks in here.

15
00:01:19,090 --> 00:01:23,900
And mainly I have networks and in here and the name by 5G.

16
00:01:24,070 --> 00:01:30,640
Now the network doesn't have to necessarily end in 5G but here in Ireland if a network broadcasts over

17
00:01:30,640 --> 00:01:35,300
five gigahertz the service provider adds 5G to the network name.

18
00:01:35,410 --> 00:01:42,280
But we also have other networks broadcast in over 5G that don't end in 5G but basically the main point

19
00:01:42,280 --> 00:01:49,870
that I want to talk about is I am not able to see all the networks around me in here and aero dump energy.

20
00:01:49,870 --> 00:01:57,350
And the reason for this is because aero dump energy is only sniffing on two point four gigahertz frequency.

21
00:01:57,790 --> 00:02:04,630
So if you do this and you don't see all the networks around you or if you're sniffing on your own network

22
00:02:04,840 --> 00:02:07,970
what you don't see all the clients in your network.

23
00:02:07,960 --> 00:02:13,310
It's possible that you're out there is broadcast in over two bands over two point four and five gigahertz.

24
00:02:13,510 --> 00:02:18,130
And if you're not seeing the router at all if you're not seeing the network at all it's like what's

25
00:02:18,130 --> 00:02:24,560
happening here for me then the router is probably just broadcasting over five gigahertz.

26
00:02:24,580 --> 00:02:28,020
Now this doesn't mean that your wireless adapter is not good.

27
00:02:28,030 --> 00:02:32,770
It just literally means that this adapter is not able to see five gigahertz frequency.

28
00:02:32,770 --> 00:02:37,060
It's just outside of its limit outside of its reach.

29
00:02:37,060 --> 00:02:42,340
The main problem with five gigahertz is that there are a lot of wireless adapters that can see it and

30
00:02:42,340 --> 00:02:48,130
can communicate with it but not many of them support monitor mode and packet injection.

31
00:02:48,130 --> 00:02:55,450
So you might see me and other people recommending wireless adapters like Alpha a W us the 0 3 6 and

32
00:02:55,540 --> 00:02:56,820
h a.

33
00:02:56,890 --> 00:02:59,950
This is my most favorite wireless adapter.

34
00:02:59,950 --> 00:03:01,740
I use it all the time even now.

35
00:03:02,050 --> 00:03:07,390
But the problem with that adapter is it doesn't pick up five gigahertz frequency so it doesn't mean

36
00:03:07,390 --> 00:03:09,070
that that adapter is bad.

37
00:03:09,070 --> 00:03:16,110
It just means that it can't see five gigahertz frequency like I said there aren't many wireless adapters

38
00:03:16,110 --> 00:03:18,530
that support why 5 gigahertz.

39
00:03:18,780 --> 00:03:20,440
But I have an adapter here.

40
00:03:20,580 --> 00:03:30,820
It's Alpha a WUSA 0 3 6 AC Hage and this adapter supports both 2.5 gigahertz and 5 gigahertz frequencies.

41
00:03:30,840 --> 00:03:35,420
It's not as good as the alpha but it does the job.

42
00:03:35,510 --> 00:03:39,390
Now if you want more information about wireless adapters check out the link in the resources.

43
00:03:39,390 --> 00:03:44,970
I'm not going to talk a lot about what wireless adapters do but in this lecture I want to show you how

44
00:03:44,970 --> 00:03:50,490
to sniff and discover a 5 gigahertz frequency networks and then so that you can use all the attacks

45
00:03:50,490 --> 00:03:56,550
that you've learned in my other lecture and in my previous videos with five gigahertz networks.

46
00:03:57,600 --> 00:04:03,900
So the adapter that I'm using right now supports five gigahertz but as you can see I still can't pick

47
00:04:03,900 --> 00:04:10,350
up these networks does because I need to specifically tell aero dump energy that I want you to listen

48
00:04:10,650 --> 00:04:16,280
on five gigahertz frequencies and five gigahertz channels to do that.

49
00:04:16,440 --> 00:04:24,150
All we have to do is just to error dump energy like we always do and then we're going to use a new argument

50
00:04:24,180 --> 00:04:25,510
that we haven't seen before.

51
00:04:25,620 --> 00:04:33,420
And this argument is called band and we're going to tell it that I want you to sniff on band a.

52
00:04:33,620 --> 00:04:37,730
And that's the band that supports five gigahertz frequency.

53
00:04:37,730 --> 00:04:42,910
And then I'm just gonna give it my wire the name of my wireless adapter and monitor mode which is mode

54
00:04:42,920 --> 00:04:43,280
zero

55
00:04:45,990 --> 00:04:52,410
so the command is very simple it's very similar to what we've used before and all we have to do is just

56
00:04:52,410 --> 00:04:58,640
type an error dump energy followed by the band and the band that we want to use is a.

57
00:04:58,830 --> 00:05:04,570
And we're following that with our wireless interface so I'm going to hit enter

58
00:05:07,490 --> 00:05:11,840
and as you can see as soon as we have this I'm actually just going to do control C now cause you can

59
00:05:11,840 --> 00:05:18,710
see the results you can see that we got much more networks right now and we have the five gigahertz

60
00:05:18,710 --> 00:05:19,130
network.

61
00:05:19,130 --> 00:05:23,530
So we have this network and this network that we weren't able to see.

62
00:05:23,630 --> 00:05:26,810
We have the Jameson whiskey network as well.

63
00:05:26,870 --> 00:05:33,030
And basically we're able to capture all the networks that use the five gigahertz frequency.

64
00:05:33,070 --> 00:05:34,830
Now what you can also do.

65
00:05:34,900 --> 00:05:36,600
Let me clear the screen.

66
00:05:36,610 --> 00:05:41,540
You can specify multiple bands using the band argument.

67
00:05:42,010 --> 00:05:49,570
So again using the same command instead of just saying band a we can do band a b g.

68
00:05:49,750 --> 00:05:58,720
And what this will do is it'll tell or dump energy to capture data on both two point four and five gigahertz

69
00:05:58,730 --> 00:06:05,310
frequencies at the same time so let me show you.

70
00:06:05,350 --> 00:06:10,630
So as you can see right here recapturing some two point four gigahertz networks and were capture in

71
00:06:10,630 --> 00:06:13,920
five gigahertz networks as well at the same time.

72
00:06:14,020 --> 00:06:19,870
And we'll also be able to discover clients connecting to both bands.

73
00:06:19,870 --> 00:06:26,080
The only problem with using aero dump like this is first of all you need a powerful wireless adapter

74
00:06:26,080 --> 00:06:27,290
to do this.

75
00:06:27,330 --> 00:06:33,580
Also it'll be slightly slower than on this anything on one band because when you're sniffing on two

76
00:06:33,580 --> 00:06:39,790
bands you have a lot of channels that era dump energy has to hop on all of them and discover clients

77
00:06:39,880 --> 00:06:46,830
and networks broadcast broadcasting on these channels so if you want quicker results then you're better

78
00:06:46,830 --> 00:06:53,490
off just specifying the band a when you want to sniff on 5 gigahertz frequencies and just not specify

79
00:06:53,490 --> 00:06:56,440
the band when sniffing on two point four.

80
00:06:56,490 --> 00:07:04,530
But as you can see you can just run the command like so with band a G and this way you'll be able to

81
00:07:04,560 --> 00:07:10,840
capture data sent over two point four and five gigahertz frequencies.

82
00:07:10,860 --> 00:07:19,050
Also keep in mind in order to sniff data on five gigahertz frequency like I said your wireless adapter

83
00:07:19,200 --> 00:07:22,230
needs to be able to support this band.

84
00:07:22,260 --> 00:07:30,390
So simply adding the band argument will not work unless your wireless adapter can support and can sniff

85
00:07:30,390 --> 00:07:34,040
data on this band.

86
00:07:34,310 --> 00:07:37,790
One more thing that I want to note I've actually said this before.

87
00:07:37,970 --> 00:07:44,450
If you run aero dump energy against a network and you see some devices miss and then there is a high

88
00:07:44,450 --> 00:07:48,470
chance that these devices are connected over five gigahertz.

89
00:07:48,740 --> 00:07:53,450
So again use the band a as then you should be able to see these devices.