V/Scan for Wireless LANs
From: Ian Chilvers (Ian.Chilvers_at_prolateral.com)
Date: 07/18/03
- Previous message: winter: "RE: Know such a web's server tool?"
- In reply to: Chad Schieken: "RE: Vuln scan tool for web"
- Next in thread: Morgan, Andy: "RE: V/Scan for Wireless LANs"
- Maybe reply: Morgan, Andy: "RE: V/Scan for Wireless LANs"
- Reply: David Nester: "RE: V/Scan for Wireless LANs"
- Maybe reply: Whiteside, Larry [contractor]: "RE: V/Scan for Wireless LANs"
- Reply: Mark Wolfgang: "Re: V/Scan for Wireless LANs"
- Maybe reply: Calderone, Denis: "RE: V/Scan for Wireless LANs"
- Reply: Chris Harrington: "Re: V/Scan for Wireless LANs"
- Maybe reply: Stanley, Tim: "RE: V/Scan for Wireless LANs"
- Reply: slugbait: "Re: V/Scan for Wireless LANs"
- Maybe reply: Bartholomew, Brian J: "RE: V/Scan for Wireless LANs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <pen-test@securityfocus.com> Date: Fri, 18 Jul 2003 13:18:37 +0100
Hi all
We've been asked to perform a vulnerability assessment for a company that
has a Wireless LAN. The W/LAN is running WEP with a random key generated,
rather than a dictionary word.
Are there any tools out there that can brute force a WEP.
Take this example. A person parks the car in the car park and sniffs the
air waves with a product like NetStumbler. He discovers the W/LAN but with
WEP.
Is there a tool he can use to discover the WEP key (possible by brute force)
If there isn't such a tool, how does this sound for an idea.
Run a app that starts at binary 0's and counts upto 128bits of 1's
For each sequence listen to see if there are any sensible packets or even
send out a DHCP discover request to see if you get a reply. This would then
possibly give you the WEP key.
Any comments
Ian....
---------------------------------------------------------------------------
KaVaDo is the first and only company that provides a complete and an
integrated suite of Web application security products, allowing you to:
- assess your entire Web environment with a Scanner,
- automatically set positive security policies for real-time protection,
and
- maintain such policies at the Application Firewall without compromising busines performance.
For more information on KaVaDo and to download a FREE white paper on Web applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------
- Previous message: winter: "RE: Know such a web's server tool?"
- In reply to: Chad Schieken: "RE: Vuln scan tool for web"
- Next in thread: Morgan, Andy: "RE: V/Scan for Wireless LANs"
- Maybe reply: Morgan, Andy: "RE: V/Scan for Wireless LANs"
- Reply: David Nester: "RE: V/Scan for Wireless LANs"
- Maybe reply: Whiteside, Larry [contractor]: "RE: V/Scan for Wireless LANs"
- Reply: Mark Wolfgang: "Re: V/Scan for Wireless LANs"
- Maybe reply: Calderone, Denis: "RE: V/Scan for Wireless LANs"
- Reply: Chris Harrington: "Re: V/Scan for Wireless LANs"
- Maybe reply: Stanley, Tim: "RE: V/Scan for Wireless LANs"
- Reply: slugbait: "Re: V/Scan for Wireless LANs"
- Maybe reply: Bartholomew, Brian J: "RE: V/Scan for Wireless LANs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
