Home page logo

pen-test logo Penetration Testing mailing list archives

Re: Wireless Cards for pen testing?
From: "Thomas d'Otreppe" <tdotreppe () gmail com>
Date: Fri, 11 Aug 2006 18:38:49 +0200

2006/8/10, Sean Calista <scalista () nitrosecurity com>:

I would recommend getting a prism chipset or a Orinoco chipset. I have
the SENAO NL-2511CD EXT2 (prism chipset) and a Cisco Aironet 350. Using
Kismet and tools for wep cracking work great with my Cisco Aironet 350.
However if you want to use a program such as void11 to perform
de_authenication and use the HostAP drivers you need to have a prism
chipset based card. Prism chipset based cards are an all around great
chipset, It works well performing wep and wpa cracking and still has the
ability to work with most penetration testing tools. Note : The Senao
NL-2511cd does not have a internal antenna. I bought a small MMCX
antenna that hooks into it. I also use a 7db and a 14db antenna(yagi) as
well. My Senao works great with void 11,wep_crack,kismet,airdump, and
other tools on  backtrack and auditor.
Prism2 cards works quite well, I would also recommend them. But
orinoco is getting very old and only capturing packets works, you
cannot inject packets, you shouldn't buy them. And also, the driver
doesn't works well on recent kernels.
I would also recommend an atheros card, you can find cheap ones (less
than 20 euro) and you can also modify them to add an antenna
connector. If you can afford, you can buy the Ubiquiti SRC which has 2
antenna connectors and is able to works on 2.4 and 5Ghz (300mw max),
that's a really good card.
About void11, I think most of these features can be found on mdk2 (
http://tinyshell.be/aircrackng/forum/index.php?topic=172.0 ) and it
works with nearly all chipsets that are able to inject packets.


This List Sponsored by: Cenzic

Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com for details.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]