Detecting 802.11 Discovery Apps
Joshua Wright writes "I have written a white paper on detecting 802.11 Wireless LAN Network Discovery applications.
Wireless LAN discovery through the use of applications such as NetStumbler, DStumbler, Wellenreiter and others is an increasingly
popular technique for network penetration. The discovery of a wireless LAN might be used for seemingly innocuous Internet access, or to be used as a "backdoor" into a network to stage an attack. This paper reviews some of the tactics used in wireless LAN network discovery and attempts to identify some of the fingerprints left by wireless LAN discovery applications, focusing on the MAC and LLC layers. This fingerprint information can then be incorporated into intrusion detection tools capable of analyzing data-link layer traffic.
"
My girlfriend gets pissed anytime I even mention backdoor penetration...
God damn, I love a good arms race.
Are you a coder? Need work? Get involved at the beginning of an arms race such as this one. Employment for years and years. Get involved early enough, and soon you will be an "expert".
Of course, there are more employent opportunities on the defensive side of the race, while the more fun side is the offense.
That's funny, I'm working on a similar whitepaper: Detecting 802.11 Detector Detectors, to detect people trying to detect people trying to detect 802.11 networks. Including is some sample code to detect the detector detectors, but it seems to get into a nasty infinite loop, and I can't figure out why.
________________________________________________
suwain_2
Dude, you forgot the Trace Buster Buster Buster, cuz that shiat will bust his trace. The Big Hit, the best low budget no box office movie every made. Don't forget that China Chow is smoking hot! Glad to see another Big Hit fan out there!
Rule of Life Number 2: Remember, it can all go to hell at any minute. --Jimmy Buffet