Re: Wireless Scanning

From: Dave McCormick (mccormic@xecu.net)
Date: Fri Sep 24 2004 - 14:15:51 EDT

• Next message: Frank Knobbe: "Re: snmp"
• Previous message: Max: "Re: snmp"
• In reply to: Chuck Fullerton: "Wireless Scanning"
• Next in thread: Jaeson Schultz: "RE: Wireless Scanning"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Tenable has a good doc on WAP scanning using Nessus and Nmap. Basically
it consists of using a combo of different methods including MAC addy ID,
HTTP server ID and SNMP info.

http://www.tenablesecurity.com/white_papers/wap-id-nessus.pdf

enjoy

Dave McCormick

On Fri, 24 Sep 2004, Chuck Fullerton wrote:

> Everyone,
>
> I'm currently looking for a tool (or compliment of tools) to perform
> Wireless Scanning during a Pen test. My plan is to Scan first for the
> presence of 802.11(whatever), bluetooth, spycams, bugs, etc. Once these are
> detected, then each of the items found can have their security tested. My
> goal of being able to do this is to Take a good security audit methodology
> (such as the OSSTMM) and scale it down for small to medium business
> effectively.
>
> Can any one recommend tools that they have used to detect these items?
>
> Chuck Fullerton
> CEH,OPST,CISSP,CSS1,CCNP,CCDA,CNA,A+
>
>
>
> ------------------------------------------------------------------------------
> Ethical Hacking at the InfoSec Institute. All of our class sizes are
> guaranteed to be 12 students or less to facilitate one-on-one interaction
> with one of our expert instructors. Check out our Advanced Hacking course,
> learn to write exploits and attack security infrastructure. Attend a course
> taught by an expert instructor with years of in-the-field pen testing
> experience in our state of the art hacking lab. Master the skills of an
> Ethical Hacker to better assess the security of your organization.
>
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
> -------------------------------------------------------------------------------
>
>

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------

• Next message: Frank Knobbe: "Re: snmp"
• Previous message: Max: "Re: snmp"
• In reply to: Chuck Fullerton: "Wireless Scanning"
• Next in thread: Jaeson Schultz: "RE: Wireless Scanning"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:06 EDT