Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: RE: Tools for Detecting Wireless APs - from the wire side.

RE: Tools for Detecting Wireless APs - from the wire side.

From: Kohlenberg, Toby <toby.kohlenberg_at_intel.com>
Date: Mon, 10 Jun 2002 10:52:33 -0700

I've done some of this in the past, the stacks actually come up
as known in some cases but as odd things. The answer I came to
was to do a multiple approach- Xprobe+Nmap+Cisco MAC monitoring
and correlate the data to get a good answer.

All opinions are my own and in no way reflect the views of my employer.

Toby

> -----Original Message-----
> From: Greg [mailto:greg_at_hoobie.net]
> Sent: Sunday, June 09, 2002 11:11 AM
> To: Isherwood Jeff C Contr AFRL/IFOSS; 'Pen-Test'
> Subject: RE: Tools for Detecting Wireless APs - from the wire side.
>
>
> Why not create NMAP OS Fingerprints for any AP types you can
> find. That way
> you'll have what you want and you could also submit the
> fingerprints to
> Fyodor for inclusion in the next release.
>
> I reallise that's not an immediate solution but it's probably
> going to be
> the most effective in the long run.
>
> regards
>
> Greg
>
>
>
>
> > -----Original Message-----
> > From: Isherwood Jeff C Contr AFRL/IFOSS
> > [mailto:Jeffrey.Isherwood_at_rl.af.mil]
> > Sent: 07 June 2002 19:22
> > To: 'Pen-Test'
> > Subject: Tools for Detecting Wireless APs - from the wire side.
> >
> >
> > I'm doing some research for a paper on wireless security,
> and I've been
> > trying to find a decent way for an administrator to probe
> his network for
> > APs that might be attached.
> >
> > There seems to be very little out there for this sort of thing.
> >
> > NMAP can recognize a fingerprint of some APs, but not all...
> >
> > ISS can sweep a wire, and report back on any that have SNMP
> enabled...
> >
> > APTOOLS claims to be capable, but isn't that easy to use or
> > figure out (for
> > me so far)
> >
> >
> > Is there anything else out there?
> >
> > ------------------------------------------------------------------
> > ----------
> > This list is provided by the SecurityFocus Security Intelligence
> > Alert (SIA)
> > Service. For more information on SecurityFocus' SIA service which
> > automatically alerts you to the latest security vulnerabilities
> > please see:
> > https://alerts.securityfocus.com/
> >
>
>
> --------------------------------------------------------------
> --------------
> This list is provided by the SecurityFocus Security
> Intelligence Alert (SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security
> vulnerabilities please see:
> https://alerts.securityfocus.com/
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Jun 10 2002

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]