|
Network Chemistry RogueScanner
hot!
|
|
Hits: 118 |
|
Date added: 12/17/2006 |
|
Network Chemistry RogueScanner
RogueScanner works using collaborative classification. Classification decisions are made by a central server which learns based on previous classifications it has performed. This means that classification accuracy will improve over time.
If RogueScanner doesn't classify your devices accurately the first time you run it, don't despair. Run it again in a few days and you should see more accurate results.
RogueScanner collects information from devices on your network (which we call evidence) and uses this evidence to make classification decisions. The evidence collected includes:
* The IP address and MAC address.
* What TCP and UDP ports are open.
* How the device responds to common network requests like a serving a web-page, telnet or SNMP.
* The DNS or Netbios name used by the device.
This information is sent to the classification server over an SSL encrypted link. No identifying information is stored by the server. For example, it doesn't store the request IP address together with the evidence. |
|
|
|
|
|
Raw Fake AP v0.2
|
|
Hits: 45 |
|
Date added: 12/19/2006 |
|
Aprogram that emulates IEEE 802.11 access points thanks to wireless raw injection.
It aims at creating/injecting both beacon and probe response frames in order to emulate valid IEEE 802.11 access points.
Infamous tools like Black Alchemy's Fake AP are using ifconfig/iwconfig to change wireless settings like BSSID, ESSID, channel and txpower. But unfortunately when using master mode, some IEEE 802.11 fields are mastered by the driver like the BSS timestamp, sequence number and (some) tagged parameters; and thus cannot be easily forged. E.g., an ESSID change (thanks to iwconfig) resets the BSS timestamp (thanks to Joshua Wright for this hint) giving the opportunity to any wireless IDS to catch a Fake AP easily.
This tool is able to fool both passive scanners (e.g. Kismet) and active scanners (e.g. XP SP2 WZC, NetStumbler) with some limitations (see below) . It can be used to disturb any (newbie) wardriver with some efficiency hiding real wireless networks (of course, this should be further enhanced thanks to a wider tool sending data, control and management frames in order to simulate a set of wireless networks). |
|
|
|
|
|
BTCrack
hot!
|
|
Hits: 76 |
|
Date added: 01/01/2007 |
|
Demonstrates serious security vulnerabilities in Bluetooth at the protocol level. BTCrack permits hacking the pairing of two Bluetooth devices. |
|
|
|
|
|
|
Hidattack
hot!
|
|
Hits: 72 |
|
Date added: 01/07/2007 |
|
Demonstrates serious security vulnerabilities in Bluetooth at the protocol level. Hidattack permits remote, external control of a wireless Bluetooth keyboard, so that it is possible to make keyboard entries on the connected computer. |
|
|
|
|
|
Wicrawl v0.3a
hot!
|
|
Hits: 83 |
|
Date added: 01/12/2007 |
|
Wicrawl is a simple wi-fi (802.11x) Access Point auditor with a simple and flexible plugin architecture. The plugins allow us to find out useful information about an AP so we don’t have to manually check each access point. Plugins are implemented for existing common tools, and new plugins can be written in any language. Wicrawl is able to use multiple cards, and eventually will be able to use multiple computers.
The goal is to automate the tedious task of scanning wi-fi access points for interesting information. This can be a useful tool for penetration testers looking to “crawl” through massive numbers of APs looking for interesting data. Plugins will be everything from DHCP and nmap to aircrack or hooks to move a motorized directional antenna around.
Major features:
* o Passive detection of Access Points (This means that if there are clients, we can find out the SSIDs from APs that have broadcast turned off).
* o Support for multiple cards. Discovery can be run from one card, while the plugins can be run from the rest.
* o Simple plugin interface with multiple Plugins (Basic association, DHCP, internet check, network mapping, WEP/WPA-PSK cracking, etc)
* o Profiles to manage card scheduling and wicrawl usage (for example a profile for mobile users, and one for penetration testing).
* o Support for multiple interfaces (GTK and status bar (with themes) now, text UI to come)
* o Reporting and summary output in HTML, XML or Text
* o Traffic packet logging in pcap format |
|
|
|
