Do not(!) run airmon-ng! The script (1540 lines to do such a simple thing as setting monitor mode) is designed to be used by aircrack-ng suite and not by hcxdumptool. It will create a virtual monitor interface by NETLINK command.
To solve the warnings:
warning: NetworkManager is running with pid 533
Code:
sudo systemctl stop NetworkManager.service
warning: wpa_supplicant is running with pid 845
Code:
sudo systemctl stop wpa_supplicant.service
warning: wlan0mon is probably a virtual monitor interface
A virtual monitor interface created by NETLINK is good if you like to stream nice videos from cute little kittens. It is not the first choice to perform high speed layer two WiFi attacks.
interface is already in monitor mode
warning: interface is not up
if the interface is already in monitor mode, hcxdumptool expect a full operational interface. It will warn you if that isn't the case.
Notice: Not all drivers/interfaces are suitable to run monitor mode and full packet injection. We need both!
Please post output of
Please post output of
Code:
$ hcxdumptool -i <your_interface> --check_driver
Please post output of
Code:
$ hcxdumptool -i <your_interface> --check_injection
And some words about "K*A*L*I, because I noticed several issue reports and comments from people with hardly any knowledge of Linux or anything related to computer security who are now trying to use K*A*L*I as their main "cracking" Linux distribution. You don’t have to use K*A*L*I. It is just a special distribution that makes the tasks it’s specifically designed for easier, while consequently making many, many other tasks more difficult.
First get familiar with Linux environment - Ubuntu (recommended by hashcat developer) gives you a better opportunity.