Penetration Testing mailing list archives

Re: Wireless Scanning

From: "Konstantin V. Gavrilenko" <mlists () arhont com>
Date: Thu, 30 Sep 2004 12:06:49 +0100

Jason T wrote:

Just a comment on using a WEP cracking programs.  I heard from Keith Parsons
who is an expert wireless teacher saying that WEP cracking in the wild today

doesn't exist in most cases.

In early 2002 all vendors saw the weak IV as an attack.  So they changed the
firmware to no longer support those weak IV's.  If you want to crack WEP it
will most likely be on an AP that has a firmware version prior to 2002.

Any comments on this?

Jason


Yes,

you can still do it. Check out the aircrack by Christophe.
http://www.cr0.net:8040/code/network/

My personal record is less than 5 minutes to break WEP128.
Should I mention that the same applies for 802.1x + WEP :)


--
Respectfully,
Konstantin V. Gavrilenko

Arhont Ltd - Information Security

web:    http://www.arhont.com
        http://www.wi-foo.com
e-mail: k.gavrilenko () arhont com

tel: +44 (0) 870 44 31337
fax: +44 (0) 117 969 0141

PGP: Key ID - 0x4F3608F7
PGP: Server - keyserver.pgp.com

Current thread:

Re:Wireless Scanning, (continued)
- Re:Wireless Scanning Ghaith Nasrawi (Sep 27)
  - Re: Wireless Scanning admin (Sep 27)
- RE: Wireless Scanning Ben Cook (Sep 27)
- RE: Wireless Scanning Maliha Rashid (Sep 27)
- RE: Wireless Scanning Lodin, Steven {D106~Indianapolis} (Sep 27)
  - RE: Wireless Scanning Jason T (Sep 28)
    - Re: Wireless Scanning Joshua Wright (Sep 30)
    - Re: Wireless Scanning sam stover (Sep 30)
    - RE: Wireless Scanning Jerry Shenk (Sep 30)
    - Re: Wireless Scanning Max Moser (Sep 30)
    - Re: Wireless Scanning Konstantin V. Gavrilenko (Sep 30)
- RE: Wireless Scanning Wozny, Scott (US - New York) (Sep 30)