airtun-ng
Create virtual tunnel interfaces for encrypted WiFi traffic
TLDR
SYNOPSIS
airtun-ng [-a bssid] [-w wepkey] [-p wpapass -e essid] [options] interface
DESCRIPTION
airtun-ng creates virtual tunnel interfaces (at0, at1, etc.) that allow sending and receiving decrypted traffic to/from a wireless network. This enables using standard network tools with encrypted WiFi networks when you know the key.The tool can operate in WEP or WPA mode, creating a virtual ethernet interface that handles encryption/decryption transparently.
PARAMETERS
-a bssid
Access point MAC address-w key
WEP key in hexadecimal (encrypt outgoing packets)-y file
Read PRGA (keystream) from file instead of a WEP key-p passphrase
WPA passphrase (decrypt packets; use with -a and -e)-e essid
Network name (required for WPA)-i iface
Capture packets from this additional interface-t tods
Frame destination: 0 = to client, 1 = to AP, 2 = WDS/Bridge-b
Bidirectional mode (send and receive)-r file
Read frames to inject from a pcap file-h mac
Source MAC address
CAVEATS
For authorized testing only. Interface must be in monitor mode. WPA mode requires the 4-way handshake to be completed. Virtual interface must be configured (IP, etc.) after creation.
HISTORY
airtun-ng was added to the aircrack-ng suite to enable post-exploitation scenarios where captured keys could be used to interact with the network using standard tools.
SEE ALSO
aircrack-ng(1), airbase-ng(1), airdecap-ng(1), airodump-ng(1), aireplay-ng(1)