Archer dual band t4u v1 monitor mode
#1
Hi there hashcat'ers, I have one important wuestiom gor me, maybe someone can answer please? I want to use mz wifi adapter Tp link t4u ac1200 v1 to check how safe is my wifi, but before the hard work I would love to know if its possible with this adapter? I found that v2 and v3 is good for that but I just cant find anything about v1. If I need to buy new adaper or card I will, but if my actual adapter is good too - I really lile the idea to save a bit of money Smile sorry for bad english, I've tried my best
Reply
#2
According to wikidevi it is not possible, running Linux "out of the box":
https://wikidevi.com/wiki/TP-LINK_Archer_T4U

You must compile a driver that support monitor mode and packet injection. For example this one here (v 5.2.20):
https://github.com/aircrack-ng/rtl8812au

You should know that there are plenty of issues on that driver, like this one, for example:
https://github.com/aircrack-ng/rtl8812au/issues/376

Also the device may not work as expected if you are hit by this kernel issue (xhci - USB 3.x):
https://bugzilla.kernel.org/show_bug.cgi?id=202541

If you solved all this issues (and there are lots of them), it may work (for example:Edimax EW-7811UAC):
https://hashcat.net/forum/thread-6661-po...l#pid45995

If you decide to buy a low cost adapter with MT7601 chipset, this chipset is good (https://github.com/aircrack-ng/rtl8812au...-533389411)
and is working out of the box (kernel >= 4.19):
SEMPRE WU150-1
ALLNET ALLWA0150
EDIMAX EW-7711UAN

or, if you need an external antenna, this expensive MT7610 one (kernel >= 4.20):
TP-LINK Archer T2UH AC600
(unfortunately, it s hit by kernel xhci bug, if connected to USB 3.x):
Reply
#3
(09-21-2019, 10:56 AM)ZerBea Wrote: According to wikidevi it is not possible, running Linux "out of the box":
https://wikidevi.com/wiki/TP-LINK_Archer_T4U

You must compile a driver that support monitor mode and packet injection. For example this one here (v 5.2.20):
https://github.com/aircrack-ng/rtl8812au

You should know that there are plenty of issues on that driver, like this one, for example:
https://github.com/aircrack-ng/rtl8812au/issues/376

Also the device may not work as expected if you are hit by this  kernel issue (xhci - USB 3.x):
https://bugzilla.kernel.org/show_bug.cgi?id=202541

If you solved all this issues (and there are lots of them), it may work (for example:Edimax EW-7811UAC):
https://hashcat.net/forum/thread-6661-po...l#pid45995

If you decide to buy a low cost adapter with MT7601 chipset, this chipset is good (https://github.com/aircrack-ng/rtl8812au...-533389411)
and is working out of the box (kernel >= 4.19):
SEMPRE WU150-1
ALLNET ALLWA0150
EDIMAX EW-7711UAN

or, if you need an external antenna, this expensive MT7610 one (kernel >= 4.20):
TP-LINK Archer T2UH AC600
(unfortunately, it s hit by kernel xhci bug, if connected to USB 3.x):
Hello, thank you for you answer. I will add if someone is using v1 so they might know if it works. I have linux The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) and tp link adapter I mentioned before version 1 and I get to monitor mode no problem, I found in google someones modified drivers for it, very easy, google your friend. Packet jamming is working too. I have fritzbox router and with aircrack-ng I got my router handshake without problems, I dont know if it is related to my wifi adapter but I just cant get PMKID with hashcat tools. atm im googling if fritzbox have ability to send PMKID or it is handshake. P.S. in my eyes, as I understand as newbie - TP link ac1200 v1 T4U works perfectly with linux The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) in monitor mode, works for me usb2 and usb3 no problem
Reply
#4
The Fritzbox isn't vulnerable. You will not receive a PMKID.
Reply
#5
(09-22-2019, 07:13 PM)ZerBea Wrote: The Fritzbox isn't vulnerable. You will not receive a PMKID.
oh thank you very much for your answer, I was trying for last 1 day to get PMKID but with your answer Im sure now there is none Tongue  maybe you know what possibilities I have with Fritzbox? only 4-way handshake or there is something else? I live in Germany but Im not german so to find information in german language is very hard and at the end I dont understand anyway Big Grin
Reply
#6
If the access point is hardened, search for weak clients.
Here is an example, of a weak client:
https://github.com/ZerBea/hcxtools/issue...-532537154
Reply