[TOOL] Kismet, Wireless Network Sniffer

• Previous message: support@securiteam.com: "[TOOL] WIDZ, Wireless Intrusion detection system"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: support@securiteam.com
To: list@securiteam.com
Date: 5 Jan 2003 13:14:52 +0200

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

Beyond Security would like to welcome Tiscali World Online
to our service provider team.
For more info on their service offering IP-Secure,
please visit http://www.worldonline.co.za/services/work_ip.asp
- - - - - - - - -

  Kismet, Wireless Network Sniffer
------------------------------------------------------------------------

DETAILS

 <http://www.kismetwireless.net/> Kismet is a 802.11b wireless network
sniffer. It is capable of sniffing using almost any wireless card
supported in Linux, which currently divide into cards handled by libpcap
and the Linux-Wireless extensions (such as Cisco Aironet), and cards
supported by the Wlan-NG project which use the Prism/2 chipset (such as
Linksys, Dlink, and Zoom). Besides Linux, Kismet also supports FreeBSD,
OpenBSD and Mac OS X systems. Features Multiple packet capture sources,
Runtime network sorting by AP MAC address (bssid), IP block detection via
ARP and DHCP packet dissection, Cisco product detection via CDP, Ethereal
and tcpdump compatible file logging, Airsnort-compatible "interesting"
(cryptographically weak) logging, Secure SUID behavior, GPS devices and
wireless devices fingerprinting. Kismet also includes a tool called gpsmap
that can be used to create maps from logged GPS data.

ADDITIONAL INFORMATION

The tool can be downloaded from:
 <http://www.kismetwireless.net/> http://www.kismetwireless.net/

The information has been provided by <mailto:dragorn@nerv-un.net> Mike
Kershaw.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

• Next message: support@securiteam.com: "[EXPL] Smart Search CGI Remote Command Execution Exploit"
• Previous message: support@securiteam.com: "[TOOL] WIDZ, Wireless Intrusion detection system"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

• Re: Limited or No wireless connection
  ... their conversations, one wireless network, occasionally picked up could be ...
  Power save on all cards turned off ... As far as I can tell neither router
  nor modem are spontaneously rebooting. ... (alt.internet.wireless)
• Re: Weird Wireless Speeds
  ... numbers that are affected by the time delay between when the download ... and
  declared his new wireless laptop to be slow dog. ... Swap the wireless cards. ...
  (alt.internet.wireless)
• Re: Limited or No wireless connection
  ... Any TIVO boxes with wireless? ... wireless router perhaps sitting in
  a window with a good view of the ... Check the power save ... settings on both cards.
  ... (alt.internet.wireless)
• RE: IDS & Wireless Access Point Detection
  ... Combine wireless penetration tecniques tougether into one perlgtk tool. ...
  Cards, detection of ad-hoc networks. ... >> interested in detecting rogue access
  points that are brought up. ... (Focus-IDS)
• Re: Wired detection of rogue access points
  ... wireless access points connected to the LAN? ... that AP acts as a L2 switch
  so there is not necessarily a signature. ... Kismet sees vs. what you see on your wired
  switches. ... (Focus-IDS)