Kismet is a 802.11a/b/g WLAN scanner, dissector and intrusion detection system. It is compatible with any wireless card that supports raw monitoring, performs automatic network IP block detection, supports GPS tracking, supports passive discovery, logs "weak" encrypted packets, is able to scan using multiple cards simultaneously, and logs to Wireshark and tcpdump compatible packet dump files.
- kismet
: Powerful WLAN Scanner/Analyzer
- Kismet is a 802.11a/b/g WLAN scanner, dissector and intrusion detection system. It is compatible with any wireless card that supports raw monitoring, performs automatic network IP block detection, supports GPS tracking, supports passive discovery, logs "weak" encrypted packets, is able to scan using multiple cards simultaneously, and logs to Wireshark and tcpdump compatible packet dump files.
- http://www.kismetwireless.net
- NetStumbler and MiniStumbler are free 802.11a/b/g WLAN scanning tools for Windows and Windows CE/PocketPC, respectively. They support active discovery only, meaning they are currently unable to detect WLANs whose access points do not broadcast their SSID (i.e.: closed networks). Contain support for GPS tracking and scripting.
- http://www.stumbler.net
- Download NetStumbler v0.4.0 (http://www.stumbler.net/download.php?site=1&filename=NetStumblerInstaller_0_4_0.exe)
- Download MiniStumbler v0.4.0 (http://www.stumbler.net/download.php?site=1&filename=MiniStumblerInstaller_0_4_0.exe)
- MacStumbler is a free 802.11b/g WLAN discovery tool for Mac OS X. It supports active scanning only and is currently unable to detect WLANs whose access points do not broadcast their SSID (i.e.: closed networks). Currently operates with Apple AirPort cards only. Supports GPS tracking.
- http://www.macstumbler.com/
- iStumbler is a free, open source tool for finding wireless networks and devices with your AirPort or Bluetooth equipped Macintosh. iStumbler combines a compact user interface with a real time display of signal strength and complete debugging information.
- http://www.istumbler.net/
- bsd-airtools
: Complete *BSD WLAN Discovery/Auditing Toolkit
- bsd-airtools is a complete toolset for wireless 802.11b auditing under NetBSD, FreeBSD and OpenBSD. Namely, it currently contains a BSD-based WEP cracking application, called dweputils, and a curses-based AP detection tool similar to NetStumbler (called dstumbler) that can be used to detect wireless access points and connected nodes, view signal to noise graphs, and interactively scroll through scanned AP's and view statistics for each. It also includes a couple other tools to provide a complete toolset for making use of all 14 of the Prism2 chipset debug modes as well as do basic analysis of the hardware-based link-layer protocols provided by Prism2's monitor debug mode.
- http://www.dachb0den.com/projects/bsd-airtools.html
- Download v0.2 (http://www.dachb0den.com/projects/bsd-airtools/bsd-airtools-v0.2.tgz)
- Wellenreiter is a graphical WLAN discovery and auditing tool written in Perl and GTK. It can discover BSS and IBSS networks, detect ESSID broadcasting or non-broadcasting networks and their WEP capabilities and the manufacturer automatically. It will also analyze any DHCP and ARP traffic to give further information about each discovered network. GPS tracking is supported. Currently works with Prism2, Lucent, and Cisco based WLAN cards.
- Developement has ceased as of version 1.9. Wellenreiter II (http://www.vanille.de/projects/wellenreiter.html) is a rewrite of Wellenreiter in C++ and is still developed.
- http://www.remote-exploit.org/?page=wellenreiter
- Download v1.9 (http://prdownloads.sourceforge.net/wellenreiter/Wellenreiter-v1.9.tar.gz?download)
- KisMAC
: Passive WLAN Discovery/Auditing Tool
- KisMAC is a free, passive 802.11b/g WLAN discovery tool for Mac OS X. It supports passive discovery only and is able to discover APs with SSID broadcasting disabled. It provides GPS tracking support and works with 3rd party non-Apple wireless cards, namely those based on Orinoco, Prism2 and Atheros chipsets. Latest versions include support for a proof-of-concept wordlist attack against WPA.
- http://binaervarianz.de/projekte/programmieren/kismac/
- Aire
: Active WLAN Discovery Tool with Voice Alerts
- AIRE is an 802.11 network discovery utility for Microsoft Windows XP. Upon finding a wireless access point, it displays pertinent information (timestamp, ESSID, channel, mode, etc) and has various useful features like a power meter display and other APs within range. A Great tool for wardriving alone as the data is read out to you as you pass by a WAP.
- http://www.robota.net/article?id=1024
- http://www.securiteam.com/tools/5WP0D2ACUG.html
- THC-Wardrive is an 802.11 WLAN scanning tool designed specifically for wardriving. Supports GPS tracking.
- Download v2.3 (http://www.thehackerschoice.com/download.php?t=r&d=wardrive-2.3.tar.gz)
- Hotspotter is a tool that passively monitors the network for 802.11 probe request frames to identify the preferred networks of Windows XP clients, and will compare it to a supplied list of common hotspot network names. If the probed network name matches a common hotspot name, Hotspotter will act as an access point to allow the client to authenticate and associate. Once associated, Hotspotter can be configured to run a command, possibly a script to kick off a DHCP daemon and other scanning against the new victim.
- http://www.remote-exploit.org/?page=hotspotter
WLAN Sniffers
- kismet : A powerful wireless sniffer
- Kismet is an 802.11b network sniffer and network dissector. It is capable of sniffing using most wireless cards, automatic network IP block detection via UDP, ARP, and DHCP packets, Cisco equipment lists via Cisco Discovery Protocol, weak cryptographic packet logging, and Wireshark and tcpdump compatible packet dump files. It also includes the ability to plot detected networks and estimated network ranges on downloaded maps or user supplied image files.
- http://www.kismetwireless.net
- Wireshark (formerly Ethereal) is a free network protocol analyzer for Unix and Windows. It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, viewing summary and detail information for each packet. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. A text-based version called tshark is included.
- http://www.wireshark.org
- TCPDump - - The classic sniffer for network monitoring and data acquisition
- Tcpdump is a well-known and well-loved text-based network packet analyzer ("sniffer"). It can be used to print out the headers of packets on a network interface that matches a given expression. You can use this tool to track down network problems or to monitor network activities. There is a separate Windows port named WinDump. TCPDump is also the source of the Libpcap/WinPcap (http://winpcap.polito.it) packet capture library, which is used by nmap among many other utilities.
- http://www.tcpdump.org
WEP Key crackers
- SwiftCrack is a wireless LAN (WLAN) tool which recovers encryption keys. SwiftCrack operates by proactively monitoring transmissions, injecting traffic with known key streams, computing the encryption key when enough packets have been gathered. ( Also the Fastest WEP cracker available)
- http://sourceforge.net/projects/swiftcrack
- Airsnort : Robust 802.11 WEP cracking tool
- AirSnort is a wireless LAN (WLAN) tool that recovers encryption keys. It was developed by the Shmoo Group and operates by passively monitoring transmissions, computing the encryption key when enough packets have been gathered. Windows support is still very preliminary.
- http://airsnort.shmoo.com
- http://www.dachb0den.com/projects/bsd-airsnort.html
- http://www.be-secure.com/airsnort.html
- WEPCrack is a tool written in Perl that cracks 802.11 WEP encryption keys using the FMS attack on WEP's RC4 key scheduling algorithm.
- http://sourceforge.net/projects/wepcrack
- WepLab : 802.11 WEP cracking tool designed from an educational point of view
- WepLab is a WEP cracker designed from an educational point of view to teach the different vulnerabilites present in WEP and how they can be exploited. WepLab tries to crack keys using 3 different attack types.
- http://weplab.sourceforge.net/
- Aircrack : 802.11 sniffer and WEP key cracker for Windows and Linux.
- Aircrack is a 802.11 WEP key cracker. It implements the so-called Fluhrer - Mantin - Shamir (FMS) attack, along with some new attacks by a talented hacker named KoreK. When enough encrypted packets have been gathered, aircrack can almost instantly recover the WEP key.
- http://www.cr0.net:8040/code/network/aircrack/
- Aircrack-ng : 802.11 sniffer and WEP key cracker for Windows and Linux.
- Aircrack-ng is the next generation of aircrack with lots of new features.
- http://tinyshell.be/aircrackng/wiki/index.php?title=Planned_Features
- http://tinyshell.be/aircrackng/wiki/index.php?title=Suggestions_-_Wanted_Features
- http://www.cr0.net:8040/code/network/aircrack/
No comments:
Post a Comment