Re: V/Scan for Wireless LANs

From: Mark Wolfgang (moonpieat_private)
Date: Fri Jul 18 2003 - 10:18:31 PDT

Next message: Calderone, Denis: "RE: V/Scan for Wireless LANs"

Previous message: Whiteside, Larry [contractor]: "RE: V/Scan for Wireless LANs"
In reply to: Ian Chilvers: "V/Scan for Wireless LANs"
Next in thread: Calderone, Denis: "RE: V/Scan for Wireless LANs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

AirSnort has been specifically designed to do WEP cracking!
http://airsnort.shmoo.com/

If that doesn't suit your fancy, there's always WEPCrack
http://wepcrack.sourceforge.net/

Have fun :)

On Fri, Jul 18, 2003 at 01:18:37PM +0100 or thereabouts, Ian Chilvers wrote:
> Hi all
> 
> We've been asked to perform a vulnerability assessment for a company that
> has a Wireless LAN.  The W/LAN is running WEP with a random key generated,
> rather than a dictionary word.
> 
> Are there any tools out there that can brute force a WEP.
> 
> Take this example.  A person parks the car in the car park and sniffs the
> air waves with a product like NetStumbler.  He discovers the W/LAN but with
> WEP.
> 
> Is there a tool he can use to discover the WEP key (possible by brute force)
> 
> If there isn't such a tool, how does this sound for an idea.
> 
> Run a app that starts at binary 0's and counts upto 128bits of 1's
> For each sequence listen to see if there are any sensible packets or even
> send out a DHCP discover request to see if you get a reply.  This would then
> possibly give you the WEP key.
> 
> Any comments
> 
> Ian....
> 
> 
> 
> ---------------------------------------------------------------------------
> KaVaDo is the first and only company that provides a complete and an 
> integrated suite of Web application security products, allowing you to:
>  - assess your entire Web environment with a Scanner,
>  - automatically set positive security policies for real-time protection, 
>    and
>  - maintain such policies at the Application Firewall without compromising busines performance.
>  
> For more information on KaVaDo and to download a FREE white paper on Web applications - security policy automation, please visit:
> http://www.kavado.com/ad.htm
> ----------------------------------------------------------------------------
> 

-- 
Risk accepted by one is imposed on all
http://moonpie.org

---------------------------------------------------------------------------
KaVaDo is the first and only company that provides a complete and an 
integrated suite of Web application security products, allowing you to:
 - assess your entire Web environment with a Scanner,
 - automatically set positive security policies for real-time protection, 
   and
 - maintain such policies at the Application Firewall without compromising busines performance.
 
For more information on KaVaDo and to download a FREE white paper on Web applications - security policy automation, please visit:
http://www.kavado.com/ad.htm
----------------------------------------------------------------------------

Next message: Calderone, Denis: "RE: V/Scan for Wireless LANs"
Previous message: Whiteside, Larry [contractor]: "RE: V/Scan for Wireless LANs"
In reply to: Ian Chilvers: "V/Scan for Wireless LANs"
Next in thread: Calderone, Denis: "RE: V/Scan for Wireless LANs"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jul 18 2003 - 10:42:09 PDT