Joel Jaeggli For AIT Wireless Security Workshop
Transcript of Joel Jaeggli For AIT Wireless Security Workshop
![Page 1: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/1.jpg)
Wireless Tools
Joel JaeggliFor
AIT Wireless Security Workshop
![Page 2: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/2.jpg)
Tools
● NetStumbler● Inssider● Kismet● Wi-Spy● Embedded Tools in commercial APs● AirSnort ● AirCrack (Ng)
![Page 3: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/3.jpg)
Netstumbler (the granddaddy)
![Page 4: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/4.jpg)
Netstumbler
● Windows APP● Kicked off the notion of “war driving” the idea of
driving around looking for open aps● That's interesting but it's more useful as a
survey tool.● Not frequently updated anymore. As a result it's
somewhat picky about the use of newer wireless cards and also it's a bit of a challange to get it to run reliably on Windows Vista.
![Page 5: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/5.jpg)
Netstumbler
● The addition of a GPS makes it useful RF surveys with 3rd party data reduction tools, which are unfortunately fairly rare and of indifferent quality.
![Page 6: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/6.jpg)
Inssider
● Open source scanner developed at metageek● Works well on Vista ● Supports a wide variety of chipsets● No gps support yet● Released march 2008
![Page 7: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/7.jpg)
Inssider
![Page 8: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/8.jpg)
Wi-Spy
● Also from metageek● When I first started
shopping for wireless spectrum analyzers for the microwave band they were $10,000
● Wi-Spy is $399 or $99 depending on version.
![Page 9: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/9.jpg)
Wi-Spy
![Page 10: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/10.jpg)
Wi-Spy
![Page 11: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/11.jpg)
Wi-Spy
●Unfortunately no 5Ghz version● Sadly that piece of kit is still $2500
●Spectrum analyzer is used in conjunction With a wireless survey tool and a other wireless survey tools
![Page 12: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/12.jpg)
Kismet
● Kismet is: – an 802.11 layer2 wireless network detector
– sniffer
– and intrusion detection system
● Utilizes a client server model, which means– Distributed network probes
– At tool you deploy into your network and leave ips services
![Page 13: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/13.jpg)
Kismet
![Page 14: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/14.jpg)
Third-party frontend qkismet
![Page 15: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/15.jpg)
Third-party frontend
![Page 16: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/16.jpg)
Embedded In your APs (Aruba controller example)
![Page 17: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/17.jpg)
Aruba controller continued
![Page 18: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/18.jpg)
Aruba client monitoring
![Page 19: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/19.jpg)
Aruba packet capture
![Page 20: Joel Jaeggli For AIT Wireless Security Workshop](https://reader035.fdocuments.us/reader035/viewer/2022071600/613d29aa736caf36b75a0ecd/html5/thumbnails/20.jpg)
Airsnort and Aircrack (Ng)
● Airsnort is a passive sniffer that will recover wep keys
● The updated version of Aircrack will also do wpa-psk keys