Penetration Testing mailing list archives
RE: Wireless Scanning
From: "Jason T" <security () jason id au>
Date: Tue, 28 Sep 2004 08:09:50 +1000
Just a comment on using a WEP cracking programs. I heard from Keith Parsons who is an expert wireless teacher saying that WEP cracking in the wild today doesn't exist in most cases. In early 2002 all vendors saw the weak IV as an attack. So they changed the firmware to no longer support those weak IV's. If you want to crack WEP it will most likely be on an AP that has a firmware version prior to 2002. Any comments on this? Jason
-----Original Message----- From: Lodin, Steven {D106~Indianapolis} [mailto:steven.lodin () ROCHE COM] Sent: Tuesday, 28 September 2004 12:38 AM To: Carney, Mark; Pen-Test Subject: RE: Wireless Scanning (Trying not to steal the thunder, just to whet your appetite. You can send me a zinger if I messed up :-) Look for a new Auditor version (looks like it will be labeled Auditor 3) to come out in the next few of weeks. There will be a couple of new tools.From the author of Auditor:"Aircrack is a better WEP cracker like Airsnort." "The second one is named chopchop and is an active WEP decrypting attack." "P.S. A WPA preshared password cracker is also on the way." http://www.remote-exploit.org/?page=auditor For those of you using Auditor, did you donate? We did. Steve-----Original Message----- From: Carney, Mark [mailto:Mark.Carney () fishnetsecurity com] Sent: Friday, September 24, 2004 11:56 AM To: Chuck Fullerton; RoF@yahoo; Pen-Test Subject: RE: Wireless Scanning Chuck, I would suggest the following toolsets/tools for 802.11 andbluetoothdiscovery. Toolsets: 1) Auditor Security Collection 2) Knoppix STD Distro Tools: 802.11 -- 1) Kismet 2) NetStumbler 3) Wellenreiter 4) asleap (if client is running Cisco LEAP) 5) AirSnort, Webattack, or dwepcrack (if client is running WEP) 6) Macchanger (to spoof mac address) 7) AirTraf BlueTooth -- 1) sdptool 2) pand 3) l2ping 4) btscanner 5) Redfang 6) BlueSniff-------------------------------------------------------------- ---------------- Ethical Hacking at the InfoSec Institute. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors. Check out our Advanced Hacking course, learn to write exploits and attack security infrastructure. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. http://www.infosecinstitute.com/courses/ethical_hacking_training.html -------------------------------------------------------------- -----------------
Current thread:
- RE: Wireless Scanning, (continued)
- RE: Wireless Scanning R. DuFresne (Sep 28)
- Re: Wireless Scanning Konstantin V. Gavrilenko (Sep 28)
- RE: Wireless Scanning Carney, Mark (Sep 24)
- RE: Wireless Scanning Clarke, Tyronne (Contractor) (Sep 24)
- RE: Wireless Scanning DeGennaro, Gregory (Sep 27)
- Re:Wireless Scanning Ghaith Nasrawi (Sep 27)
- Re: Wireless Scanning admin (Sep 27)
- RE: Wireless Scanning Ben Cook (Sep 27)
- RE: Wireless Scanning Maliha Rashid (Sep 27)
- RE: Wireless Scanning Lodin, Steven {D106~Indianapolis} (Sep 27)
- RE: Wireless Scanning Jason T (Sep 28)
- Re: Wireless Scanning Joshua Wright (Sep 30)
- Re: Wireless Scanning sam stover (Sep 30)
- RE: Wireless Scanning Jerry Shenk (Sep 30)
- Re: Wireless Scanning Max Moser (Sep 30)
- Re: Wireless Scanning Konstantin V. Gavrilenko (Sep 30)
- RE: Wireless Scanning Jason T (Sep 28)
- RE: Wireless Scanning Wozny, Scott (US - New York) (Sep 30)