Home page logo
/

basics logo Security Basics mailing list archives

Re: Wireless Ethereal
From: Markus Schabel <markus.schabel () tgm ac at>
Date: Sun, 21 Mar 2004 20:05:10 +0100

jburzenski () americanhm com wrote:
Has anyone used Ethereal to capture wireless traffic, and if
so, can you point me to any resources documenting wireless Ethereal usage?

Ethereal will display the wireless packet data in much the same way wired
packets are displayed except that you will see more control packets and
such.  Decoding will not be possible unless you are monitoring an
unencrypted network (at which point you are doing IP over 802.11).  The
packet details are mostly self explanatory (web enabled, channel, etc.).

If you're using any spoofing technices you can sniff all traffic on
encrypted wireless networks. If you are in the network and run
arp-spoofing you'll get all packets unencrypted (to be correct:
encrypted with your own key), and I don't see any possibility to deny
this except with static arp tables on the clients - which is a bit
complicated if you have roaming clients...

best regards
Markus

<snip/>
--
          \\\ ||| ///                               _\=/_
           (  @ @  )                                (o o)
+--------oOOo-(_)-oOOo--------------------------oOOo-(_)-oOOo------+
| Markus Schabel      TGM - Die Schule der Technik   www.tgm.ac.at |
| IT-Service          A-1200 Wien, Wexstrasse 19-23  net.tgm.ac.at |
| markus.schabel () tgm ac at                   Tel.: +43(1)33126/316 |
| markus.schabel () members fsf org             Fax.: +43(1)33126/154 |
| FSF Associate Member #597, Linux User #259595 (counter.li.org)   |
|        oOOo        Yet Another Spam Trap:     oOOo               |
|       (    )    oOOo    yast () tgm ac at       (   )     oOOo      |
+--------\  (----(   )--------------------------\ ( -----(   )-----+
          \_)     ) /                            \_)      ) /
                 (_/                                     (_/

Computers are like airconditioners:
  They stop working properly if you open windows.

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault