|
chopchop 0.1
hot!
|
|
Hits: 98 |
|
Date added: 09/13/2005 |
|
Revolutionary tool that decrypts any kind of WEP encrypted paket byte by byte by probing it against Access point. It is an active wep tool so it may generate some noise in the network traffic.only decodes IP ARP traffic |
|
|
|
|
|
KARMA Wireless Client Security Assessment Tools
hot!
|
|
Hits: 103 |
|
Date added: 11/27/2006 |
|
KARMA is a set of tools for assessing the security of wireless clients at multiple layers. Wireless sniffing tools discover clients and their preferred/trusted networks by passively listening for 802.11 Probe Request frames. From there, individual clients can be targetted by creating a Rogue AP for one of their probed networks (which they may join automatically) or using a custom driver that responds to probes and association requests for any SSID. Higher-level fake services can then capture credentials or exploit client-side vulnerabilities on the host.
KARMA includes patches for the Linux MADWifi driver to allow the creation of an 802.11 Access Point that responds to any probed SSID. So if a client looks for 'linksys', it is 'linksys' to them (even while it may be 'tmobile' to someone else). Operating in this fashion has revealed vulnerabilities in how Windows XP and MacOS X look for networks, so clients may join even if their preferred networks list is empty.
Currently, these releases are BYOX (Bring Your Own Exploits), although a number of client-side exploits have been written, tested and demonstrated within this framework. Some may be included in a future release. Automated agent deployment is also planned. |
|
|
|
|
|
WifiZoo
hot!
|
|
Hits: 117 |
|
Date added: 10/02/2007 |
|
WifiZoo is a tool to gather wifi information passively. Hernan wanted to do something wifi-related somewhat helpful in wifi pentesting and Hernan did this just to have fun after he discovered 'Ferret' from Errata Security. Hernan knows neither Ferret or WifiZoo do anything spectacular, but he thought that the idea was fun/useful anyways.
Hernan basically wanted something that he could run and tried by itself to get info from open wifi networks (and possibly encrypted also in the future, at least with WEP) without joining any network, and covering all wifi channels, and this is what he came up with so far. Its written in python, can modified easily, and it fulfills its not-very-ambitious purpose. Kudos to scapy for doing pretty much all the packet parsing for me (scapy is great). |
|
|
|
|
|
Network Chemistry RogueScanner
hot!
|
|
Hits: 118 |
|
Date added: 12/17/2006 |
|
Network Chemistry RogueScanner
RogueScanner works using collaborative classification. Classification decisions are made by a central server which learns based on previous classifications it has performed. This means that classification accuracy will improve over time.
If RogueScanner doesn't classify your devices accurately the first time you run it, don't despair. Run it again in a few days and you should see more accurate results.
RogueScanner collects information from devices on your network (which we call evidence) and uses this evidence to make classification decisions. The evidence collected includes:
* The IP address and MAC address.
* What TCP and UDP ports are open.
* How the device responds to common network requests like a serving a web-page, telnet or SNMP.
* The DNS or Netbios name used by the device.
This information is sent to the classification server over an SSL encrypted link. No identifying information is stored by the server. For example, it doesn't store the request IP address together with the evidence. |
|
|
|
|
|
|
WepWedgie 0.1
hot!
|
|
Hits: 136 |
|
Date added: 09/13/2005 |
|
WEPCrack is a tool that cracks 802.11 WEP encryption keys using the latest discovered weakness of RC4 key scheduling. WEPWedgie is a toolkit for determining 802.11 WEP keystreams and injecting traffic with known keystreams. The toolkit also includes logic for firewall rule mapping, pingscanning, and portscanning via the injection channel and a cellular modem |
|
|
|
