Considering writing a wifi cracking (wep, wpa) auditing tool for the android platform, but I am wondering if it is possible to do without a rooted phone. I had thought it would be impossible to run on an unrooted phone due to the phones wifi chip ignoring packets not addressed to the phone. That is, without the ability to set the wifi chip to monitor mode many of these attacks wont work.
I was surprised to learn that android supports multicast packets. That is, android phones can be set to receive packets not addressed to them.
My questions are:
Does having a multicast lock mean I can receive all packets broadcast, or does it only apply to packets with a multicast flag (if such a thing exists)?
Is there a difference between monitor mode and multicast?
Does the android api have a system for switching channels?
More generally I'm curious:
Is anyone familar with other wifi cracking projects running on android (google searches turned up very little)?
What difficulties am I likely to run into?
This question is related to SO question Is there anyway to put Android WIFI (droid handset) into permiscuous monitoring mode?