|
BSD - Airtools |
|
NetBSD, OpenBSD, and FreeBSD |
dachb0den labs |
http://www.dachb0den.com/projects/bsd-airtools.html |
|
bsd-airtools is a package that
provides a complete toolset for wireless 802.11b auditing. Namely, it
currently contains a bsd-based wep cracking application, called dweputils
(as well as kernel patches for NetBSD, OpenBSD, and FreeBSD). It also
contains a curses based ap detection application similar to netstumbler
(dstumbler) that can be used to detect wireless access points and
connected nodes, view signal to noise graphs, and interactively scroll
through scanned ap's and view statistics for each. It also includes a
couple other tools to provide a complete toolset for making use of all 14
of the prism2 debug modes as well as do basic analysis of the
hardware-based link-layer protocols provided by prism2's monitor debug
mode. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
NetStumbler |
|
OS -- Windows
802.11b
Cards -- ORiNOCO |
|
http://www.netstumbler.com/ |
|
NetStumbler is a Windows utility for
802.11b based wireless network auditing |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
Kismet |
|
OS -- Linux, Zaurus (Linux), iPaq
802.11b
Cards -- loads |
|
http://www.kismetwireless.net/ |
|
Kismet is a 802.11b wireless network
sniffer. It is capable of sniffing using almost any wireless card
supported in Linux, including Prism2 based cards supported by the Wlan-NG
project (Linksys, Dlink, Rangelan, etc), cards which support standard
packet capture via libpcap (Cisco), and limited support for cards without
RF Monitor support. |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
Fake AP |
|
OS -- Linux
802.11b
Cards -- Prism2/2.5/3 based |
|
http://www.blackalchemy.to/Projects/fakeap/fake-ap.html |
|
Black Alchemy's
Fake AP
generates thousands of counterfeit 802.11b access points. Hide in plain
sight amongst Fake AP's cacophony of beacon frames. As
part of a honeypot or as an instrument of your site security plan,
Fake AP confuses Wardrivers, NetStumblers, Script Kiddies, and
other undesirables. |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
Wellenreiter |
|
OS -- Linux
802.11b
Cards -- all 3 major card types are supported |
|
http://www.wellenreiter.net/ |
|
Wellenreiter is a GTK/Perl program
for auditing 802.11b wireless networks. It has an embedded statistics
engine for the common parameters provided by wireless drivers, enabling
you to view details about the consistency and signal strength of the
network. Its scanner window can be used to discover access-points,
networks, and ad-hoc cards. Records the network location with GPS support. |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
AirSnort |
|
OS -- Linux
802.11b
Cards -- Orinoco, Prism2 (wlan-ng), Cisco Aironet |
|
http://airsnort.shmoo.com/ |
|
AirSnort is a wireless LAN (WLAN) tool
which recovers encryption keys. AirSnort operates by passively monitoring
transmissions, computing the encryption key when enough packets have been
gathered |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
WaveStumbler |
|
OS -- Linux
802.11?
Cards -- Hermes based |
|
http://www.cqure.net/tools.jsp?id=08
|
|
WaveStumbler is console based 802.11
network mapper for Linux. It reports the basic AP stuff like
channel, WEP, ESSID, MAC etc. It has support for
Hermes based cards |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
AiroPeek |
|
OS -- Windows
802.11b
Cards --
Various |
|
http://www.wildpackets.com/products/airopeek |
|
AiroPeek is a comprehensive packet
analyzer for IEEE 802.11b wireless LANs, supporting all higher level
network protocols such as TCP/IP, AppleTalk, NetBEUI and IPX. Affordable
and easy-to-use, AiroPeek contains all of the network troubleshooting
features familiar to users of our award-winning EtherPeek™. In addition,
AiroPeek quickly isolates security problems, fully decodes 802.11b WLAN
protocols, and analyzes wireless network performance with accurate
identification of signal strength, channel and data rates. |
|
Commercial
|
Information
Updated:18 Aug 2002
|
|
StumbVerter |
|
OS -- Windows
N/A
Cards -- N/A |
Sonar Security |
http://www.sonar-security.com |
|
StumbVerter is a
standalone application which allows you to import
Network Stumbler's
summary files into Microsoft's
MapPoint 2002
maps. The logged WAPs will be shown with small icons, their colour
and shape relating to WEP mode and signal strength. As the AP icons are
created as MapPoint pushpins, the balloons contain other information, such
as MAC address, signal strength, mode, etc. This balloon can also be used
to write down useful information about the AP, notes, etc. |
|
Freeware
|
Information
Updated:18 Aug 2002
|
|
AP
Scanner |
|
OS -- Macintosh
802.11?
Cards -- ? |
|
http://www.macupdate.com/info.php/id/5726 |
|
AP Scanner is a
small Macintosh-only application that will detect all in-range open 802.11
wireless network access points. It will show you a pretty little graph and
show potential channel conflicts.
|
|
CharityWare?
|
Information
Updated:18 Aug 2002
|
|
 |
|
Sniffer
Wireless |
|
OS -- Windows
802.11b
Cards -- Symbol Technologies
Spectrum24® Model 4121, Cisco Systems Aironet 340 and 350, Agere Systems
ORiNOCO, Enterasys RoamAbout |
Networks Associates
Technology, Inc. |
http://www.sniffer.com/products/wireless/default.asp?A=5 |
|
Sniffer Wireless was designed
in accordance with the IEEE 802.11b interoperability standard. It includes
network monitoring, capturing, decoding, and filtering-all the standard
award-winning Sniffer Pro features you already know and appreciate.
Sniffer Wireless also provides the most comprehensive 802.11b solution to
the unique aspects of wireless networks. Sniffer Wireless LAN management
tool can spot security risks in real-time, identify network problems
efficiently and reduce network-operating costs. |
|
Commercial
|
Information
Updated:18 Aug 2002
|
|
WEPcrack |
|
OS -- Linux
802.11
Cards -- Suspect Prism |
|
http://wepcrack.sourceforge.net/ |
|
WEPCrack is an open source tool for
breaking 802.11 WEP secret keys
The current tools are Perl based, and are composed of the following
scripts:
1 - WeakIVGen.pl - This script allows a simple emulation of IV/encrypted
output that one might observe with a WEP enable 802.11 Access Point. The
script generates IV combinations that can weaken the secret key used to
encrypt the WEP traffic
2 - prism-getIV.pl - This script relies on output from Prismdump [or from
Ethereal captures if libpcap has been patched for 802.11 monitor mode],
and looks for IVs that match the pattern known to weakned secret keys.
This script also captures the 1st byte of the encrypted output and places
it and the weak IVs in a logfile.
3 - WEPCrack.pl - This script uses data collected or generated by
WeakIVGen to attempt to determine the secret key. It will work with either
40bit or 128bit WEP.
Additionaly, there is a script prism-decode.pl that will decode most
802.11 frame types. This tool is intended to be used with prismdump, but
could also be used against Ethereal 802.11 saved captures. It might be
useful for capturing SSIDs, AP MAC addresses, or authentication data. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
|
|
Prism2 |
|
OS -- Linux
802.11
Cards -- Prism2 |
|
http://hostap.epitest.fi/ |
|
This is a Linux driver for wireless LAN
cards based on Intersil's Prism2/2.5/3 chipset. The driver supports a so
called Host AP mode, i.e., it takes care of IEEE 802.11 management
functions in the host computer and acts as an access point. This does not
require any special firmware for the wireless LAN card. In addition to
this, it has support for normal station operations in BSS and possible
also in IBSS. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
SSIDsniff |
|
OS -- Linux
802.11
Cards -- Cisco Aironet and random prism2 |
|
http://www.bastard.net/~kos/wifi/ |
|
A nifty tool to use when looking to
discover access points and save captured traffic. Comes with a configure
script and supports Cisco Aironet and random prism2 based cards. Kudos to
AC for the USR card. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
MacStumbler |
|
OS -- Mac
802.11
Cards -- airport |
|
http://www.macstumbler.com/ |
|
MacStumbler is a utility to display
information about nearby 802.11b and 802.11g wireless access points. It is
mainly designed to be a tool to help find access points while traveling,
or to diagnose wireless network problems. Additionally, MacStumbler can be
used for "wardriving", which involves co-ordinating with a GPS unit while
traveling around to help produce a map of all access points in a given
area.
MacStumbler requires an Apple Airport Card and MacOS 10.1 or greater.
MacStumbler doesn't currently support any kind of PCMCIA or USB wireless
device. |
|
Freeware
|
Information Updated: 05 June 2006
|
|
|
|
WaveMon |
|
OS -- Linux
802.11
Cards -- Lucent Orinoco type |
|
http://www.jm-music.de/projects.html |
|
wavemon is a ncurses-based
monitoring application for wireless network devices. It currently works
under Linux with devices that are supported by the wireless extensions by
Jean Tourrilhes (included in Kernel 2.4 and higher), e.g. the Lucent
Orinoco cards. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
PrismStumbler |
|
OS -- Linux
802.11b
Cards -- Prism 2 - Wlan-ng |
|
http://prismstumbler.sourceforge.net/ |
|
Prismstumbler is a wireless
LAN (WLAN) which scans for beaconframes from accesspoints. Prismstumbler
operates by constantly switching channels an monitors any frames recived
on the currently selected channel. |
|
Freeware
|
Information Updated: 01 Sep 2002
|
|
AirTraf |
|
OS -- Linux
802.11b
Cards -- Cisco Aironet, Prism2, |
|
http://airtraf.sourceforge.net/ |
|
AirTraf is a package with many
features. It is enabled to operate as a standard real-time data gathering
tool for solving location specific problems, as well as operating as a
long-term data gathering tool for your wireless networked organization. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
MogNet |
|
OS -- Linux
802.11
Cards -- any "monitor mode" capable |
|
http://node99.org/projects/mognet/ |
|
Mognet is a free, open source wireless
ethernet sniffer/analyzer written in Java. Currently being rewritten in
C++
It was designed with handheld devices like the iPaq in mind, but will run
just as well on a desktop or laptop. |
|
Freeware
|
Information
Updated: 01 Sep 2002
|
|
AirMagnet |
|
Handheld Appliance (iPaq 3850)
802.11, 802.1x
included |
|
http://www.airmagnet.com/products/handheld.htm |
|
The AirMagnet Handheld Analyzer
represents a new generation of wireless network administration and
diagnostic tools. Built from the ground up to help network professionals
administer and troubleshoot 802.11 and 802.1x standards-based WLANs, it
provides a robust set of tools to quickly eliminate connection problems,
maintain network performance levels, ensure a high level of network
security and to survey and deploy wireless network. |
|
Commercial
|
Information
Updated: 01 Sep 2002
|
|
Air-Jack |
|
OS -- Linux
802.11 |
|
http://www.securiteam.com/tools/5LP012KFPC.html |
n
AirJack is a device
driver (or suit of device drivers) for 802.11(a/b/g) raw frame
injection and reception. It is meant as a development tool for all
manor of 802.11 applications that need to access the raw protocol.ement frames.
|
|
Freeware
|
Information
Updated: 05 June 2006
|
|
|
|
AirDefense Mobile |
|
Software, requires wireless card |
AirDefense, Inc |
http://www.airdefense.net/products/admobile/index.php |
|
AirDefense Mobile™ is a complementary solution to the AirDefense Enterprise monitoring platform, giving
enterprises an AirDefense-powered mobile product to perform a real-time snapshot of all WLAN infrastructure
and activity (802.11 a/b/g). This must-have tool provides wireless device inventory, threat index analysis,
location tracking, advanced rogue management and automated protection.
Running on a Windows XP or 2000 platform, AirDefense Mobile installs on any laptop with an Atheros-based
802.11 a/b/g wireless card, such as Netgear (WAG511) or Cisco (CB21AG).
With over 175 alarms, AirDefense Mobile provides the most advanced mobile security tool in the market today.
A flexible notification engine ensures that critical alerts are communicated in a timely manner. Companies
use AirDefense Mobile to locate rogue access points and stations, identify mis-configured devices and to
take proactive steps to close any security holes as part of a WLAN policy compliance program. AirDefense
Mobile also provides diagnostic tools and signal interference measurements for network troubleshooting
thereby ensuring the health of the wireless LAN.
FUNCTIONALITY
AirDefense Mobile provides a real-time snapshot of all 802.11 a/b/g wireless infrastructure including:
* Real Time Device Discovery and Connection Analysis
* Advanced Rogue Management with Threat Indicators for rogue devices
* Real-time Threat Detection and Alarm Expert Help
* Advanced Location Tracking including Triangulation positioning
* Automated Protection with Termination Capabilities
* Live View for Traffic Analysis
* Wireless Network Usage Statistics and Health Analysis
* Capture file playback for off-site analysis and reporting
* Advanced Diagnostics tools for Troubleshooting
* Reporting Capabilities
|
|
Commercial
|
Information
Updated: 22 June 2007
|
|
witools |
|
OS -- FreeBSD
802.11?
Cards -- |
|
http://www.wastelands.gen.nz/wireless/index.php |
|
witools
is a small collection of utilities to aid in the exploration of 802.11
wireless networks. It currently consists of:
wimonitor
-
Continually probes the wireless interface for network information,
logging any events of interest and reporting signal quality information
via an audio device (i.e. it functions as a WaveLAN gieger counter).
Extremely flexible configuration with the ability to automatically
change modes between (Base station / Ad-Hoc) and enabled and disable
encryption. Basically all you'll ever need for a days "War Driving"
- wiget
-
enables
you to extract the various configuration settings and informational
items from a wireless device, primarily designed for use in shell
scripts (for those who want to role their own wimonitor :).
|
|
Freeware |
Information
Updated: 03 Sep 2002 |
|
|
|
Aerosol |
|
OS -- Windows
802.11b
Cards -- Prism2 |
|
http://www.sec33.com/sniph/aerosol.php |
|
Aerosol is easy to use wardriving
software for PRISM2 Chipset Wireless cards on Windows. Its lightweight,
written in C |
|
Freeware
|
Information
Updated: 03 Sep 2002
|
|
WLAN Expert |
|
OS -- Windows
802.11b
Cards -- Prism |
|
http://www.allaboutjake.com/network/linksys/wlanexpert/ |
|
WLAN Expert is a wireless
client utility designed to work with the PRISM chipset by Intersil. The
Linksys WPC11 is the only client card I've tested, although many
manufacturers use this silicon. Intersil counts Alcatel, Cisco, Compaq,
Nokia, Nortel, Samsung and Siemens among its OEMs. |
|
Freeware
|
Information
Updated: 03 Sep 2002
|
|
Last page update: 22 June 2007 |
|
