There was some interesting information on 802.11 and 802.11b in a brief by
Nikita Borisov, Ian Goldberg, and David Wagner at Berkeley, You can pick up
the information here:
http://www.isaac.cs.berkeley.edu/isaac/wep-faq.html
They also listed an email address for any questions on the brief:
wep_at_isaac.cs.berkeley.edu
It would appear they are the current authority on the subject.
An interesting response from Cisco as well:
http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/1281_pp.htm
----- Original Message -----
From: "Frank Knobbe" <FKnobbe_at_KNOBBEITS.COM>
To: <PEN-TEST_at_SECURITYFOCUS.COM>
Sent: Tuesday, March 06, 2001 8:23 PM
Subject: [PEN-TEST] Penetrating Wireless Networks
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Greetings,
>
> I know the technologies are rather new compared to wired networks,
> but does anyone have and pointers for penetration tests of wireless
> networks, 802.11b in particular?
>
> In my opinion, with the advance of wireless networks, this will be a
> very important part of pen tests. Has anyone developed any
> methodologies for such tests? Are there any tools available that
> assist in testing wireless networks? For example, one is able to run
> tcpdump and other goodies on the wireless card just like on regular
> NIC's. However, in order to gain access to the WLAN, one must know
> not only the WEP encryption key (if WEP is used), but also the ESS
> (network identifier), preamble length, and channel number. Are there
> any tools that provide automation of changes for these values (for an
> automated scan)? Are there any tools for 'low-level' 802.11b data
> examination (i.e. preamble checking/display, etc)?
>
> Regards,
> Frank
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGP Personal Privacy 6.5.8
> Comment: PGP or S/MIME encrypted email preferred.
>
> iQA/AwUBOqWNiZytSsEygtEFEQJ2oQCg4/opiTBaIeIx1TeJhnJ8ZtJ8SdAAoK2M
> uEjKyVpUpTsC9ci2eJ++DA+N
> =C3F0
> -----END PGP SIGNATURE-----
Received on Mar 08 2001
Intro
