Re: Wireless Audit Reports
- From: "David M. Zendzian" <dmz@xxxxxxxx>
- Date: Wed, 29 Mar 2006 23:53:53 -0800
Something you might find easier would be to do an inventory of MAC addresses on your network (query all your switches if you have to) and then determine the manufacturer of all devices. If you have any APs in there, if they aren't running off some machine (hostap/madwifi/etc), then you should be able to find them this way.
dmz
Matthew Webster wrote:
Hi,
I work in an environment that has a policy that does not permit wireless devices. We still do an "audit" of the area to ensure that there are no wireless devices in our area. I wish to prove that there are no devices. Being in a city, there are literally hundreds of wireless networks present - perhaps up to 50 in any one given area of our building. I have tracked the signals down and have determined that there are no rogue access points or peer networks hidden in our portion of the building.
Now a traditional wireless audit would be easy. I could report the signal strengths of our devices, if the SSID's are correct, are non-broadcast, etc. That would be an easy report to create after data collection. In this case, I am trying to prove a negative. I can list networks, signal strengths, etc. but I feel like I am fluffing the report with meaningless and time wasting statistics. Does anyone have any experience in what they would report under these circumstances?
Matt
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request@xxxxxxxxxx
------------------------------------------------------------------------------
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security? As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/forms/ec.php?pubid=10025
And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request@xxxxxxxxxx
------------------------------------------------------------------------------
- References:
- Wireless Audit Reports
- From: Matthew Webster
- Wireless Audit Reports
- Prev by Date: Re: vulnerability scanners not effective? or just a false-positive?
- Next by Date: Re: NMAP Switches, -sS, -sT, etc.
- Previous by thread: Wireless Audit Reports
- Next by thread: Re: Wireless Audit Reports
- Index(es):
Relevant Pages
|
|
