Penetration Testing mailing list archives

Re: [PEN-TEST] Penetrating Wireless Networks

From: Robert Stonehouse <robert.stonehouse () cmsecurenet com>
Date: Wed, 7 Mar 2001 23:56:14 -0500

There was some interesting information on 802.11 and 802.11b in a brief by
Nikita Borisov, Ian Goldberg, and David Wagner at Berkeley, You can pick up
the information here:
http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html

They also listed an email address for any questions on the brief:
wep () isaac cs berkeley edu

It would appear they are the current authority on the subject.

An interesting response from Cisco as well:
http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/1281_pp.htm

----- Original Message -----
From: "Frank Knobbe" <FKnobbe () KNOBBEITS COM>
To: <PEN-TEST () SECURITYFOCUS COM>
Sent: Tuesday, March 06, 2001 8:23 PM
Subject: [PEN-TEST] Penetrating Wireless Networks

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Greetings,

I know the technologies are rather new compared to wired networks,
but does anyone have and pointers for penetration tests of wireless
networks, 802.11b in particular?

In my opinion, with the advance of wireless networks, this will be a
very important part of pen tests. Has anyone developed any
methodologies for such tests? Are there any tools available that
assist in testing wireless networks? For example, one is able to run
tcpdump and other goodies on the wireless card just like on regular
NIC's. However, in order to gain access to the WLAN, one must know
not only the WEP encryption key (if WEP is used), but also the ESS
(network identifier), preamble length, and channel number. Are there
any tools that provide automation of changes for these values (for an
automated scan)? Are there any tools for 'low-level' 802.11b data
examination (i.e. preamble checking/display, etc)?

Regards,
Frank


-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.8
Comment: PGP or S/MIME encrypted email preferred.

iQA/AwUBOqWNiZytSsEygtEFEQJ2oQCg4/opiTBaIeIx1TeJhnJ8ZtJ8SdAAoK2M
uEjKyVpUpTsC9ci2eJ++DA+N
=C3F0
-----END PGP SIGNATURE-----

Current thread:

[PEN-TEST] Penetrating Wireless Networks Frank Knobbe (Mar 07)
- Re: [PEN-TEST] Penetrating Wireless Networks Mark Seiden (Mar 07)
- Re: [PEN-TEST] Penetrating Wireless Networks Max Gribov (Mar 07)
- Re: [PEN-TEST] Penetrating Wireless Networks Robert Stonehouse (Mar 08)
  - Re: [PEN-TEST] Penetrating Wireless Networks Rafael Coninck Teigao (Mar 09)
    - Re: [PEN-TEST] Penetrating Wireless Networks van der Kooij, Hugo (Mar 09)
    - Re: [PEN-TEST] Penetrating Wireless Networks Rafael Coninck Teigao (Mar 09)
    - Re: [PEN-TEST] Penetrating Wireless Networks Weiss, Bill (Mar 09)
    - Re: [PEN-TEST] Penetrating Wireless Networks Anton Rager (Mar 09)
    - Re: [PEN-TEST] Penetrating Wireless Networks mirza sahib (Mar 11)
- Re: [PEN-TEST] Penetrating Wireless Networks Ichinin (Mar 11)
  - Re: [PEN-TEST] Penetrating Wireless Networks Phil Cox (Mar 12)
    - Re: [PEN-TEST] Penetrating Wireless Networks Marc Mosko (Mar 12)
    - Re: [PEN-TEST] Penetrating Wireless Networks Ichinin (Mar 13)

(Thread continues...)