Penetration Testing mailing list archives
Re: Vulnerability Scanner for Wireless Card Drivers
From: Joshua Gimer <jgimer () gmail com>
Date: Mon, 14 Sep 2009 18:09:56 -0600
Maybe something like WiFiDEnum? https://labs.arubanetworks.com/ WiFi Driver Enumeration; wired scanning for driver vulnerability assessment. WiFiDEnum is the WiFi Driver Enumerator, a Windows tool that assesses wireless driver information on local and remote Windows workstations. Using a database of known wireless vulnerabilities, WiFiDEnum assesses the versions of installed drivers and produces a vulnerability report, identifying systems and specific drivers that are at risk to wireless driver exploit attacks. WiFiDEnum scans Windows hosts over the infrastructure network (e.g. wired or wireless connections) using the Windows Management Instrumentation (WMI) API. Using the current user or alternate specified authentication credentials, WiFiDEnum extracts registry information on a remote host to identify the wireless drivers that are installed, and the associated version information for each driver. With the driver version information, WiFiDEnum examines a local MS Access database file that identifies several vulnerable Windows drivers. Using this database information, WiFiDEnum assesses each driver to determine if it is vulnerable, and reports it appropriately. Once the scan is finished, the user can generate a simple HTML report that identifies all the stations scanner, the wireless driver and version information for each workstation, and any vulnerabilities discovered, along with CVE and WVE links for more information about the vulnerability (wherever possible). Thanks Josh On Fri, Sep 11, 2009 at 7:50 AM, Yiannis Koukouras <ikoukouras () gmail com> wrote:
Hello guys, Has any one heard of a VS for wireless card drivers? What I mean is a tool that you have on your laptop and scan the laptops that are probing into the air, for driver versions with vulnerabilities (something common). It is time consuming trying everything manually. Don't u think? Cheers, Ioannis (Yiannis) Koukouras CISSP, CISA, CISM MSc in Computer Systems Security BEng in Electronic Engineering http://www.linkedin.com/in/ikoukouras ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
-- Thx Joshua Gimer ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Vulnerability Scanner for Wireless Card Drivers Yiannis Koukouras (Sep 14)
- Re: Vulnerability Scanner for Wireless Card Drivers Joshua Wright (Sep 15)
- Re: Vulnerability Scanner for Wireless Card Drivers Joshua Gimer (Sep 15)