What is Airodump-ng used for?
Capturing packets and raw 802.11 frames for Wi-Fi analysis.
What data does Airodump-ng collect?
Access points, clients, beacons, encryption types, and captured handshakes.
What must be done before running Airodump-ng?
Enable monitor mode on the wireless interface.
What command enables monitor mode?
sudo airmon-ng start wlan0.
What command starts Airodump-ng scanning?
sudo airodump-ng wlan0mon.
What does the ‘CH’ field show in Airodump-ng output?
The current channel being scanned.
What does the ‘PWR’ field indicate?
Signal strength of the access point.
What does ‘Beacons’ represent?
Number of broadcast announcements sent by the access point.
What is ‘#Data’ used for?
Number of captured data packets.
What does ‘ENC’ stand for?
Encryption type (e.g., WPA, WEP, OPN).
What does ‘CIPHER’ represent?
Encryption cipher, such as TKIP or CCMP.
What does ‘AUTH’ mean?
Authentication type (e.g., PSK or MGT).
What does ‘ESSID’ represent?
The network name (SSID) being broadcast.
What is BSSID?
The MAC address of an access point.
What does the ‘Station’ section show?
Clients connected or probing access points.
How can you scan a specific channel?
Use ‘-c <channel>' to focus on one frequency.</channel>
Why scan a single channel?
It provides more refined data and reduces interference.
How to include 5GHz networks in scans?
Use ‘–band a’ for 5GHz or ‘–band abg’ for all.
Which bands correspond to 2.4GHz and 5GHz?
a = 5GHz, b/g = 2.4GHz.
What command scans all bands?
airodump-ng –band abg wlan0mon.
How to save scan results to a file?
Use ‘-w <filename>' with Airodump-ng.</filename>
What types of files does Airodump-ng create?
CSV, cap, and netxml output files.
Which tool uses Airodump-ng CSV outputs for graphs?
Airgraph-ng.
What is the purpose of capturing WPA handshakes?
They are used later for password cracking with Aircrack-ng.
