NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Pen-test> 2009-05

Re: Automated wireless testing script

From: subscribe subscribe (subscr1b3m3gmail.com)
Date: Thu May 28 2009 - 14:49:49 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

it doesn't matter if it's a 128-bit or 256. The cracking starts at 20k
IVs. Once it starts, it will continue to collect IVs until the key is
found. Hmm... this reminds me to insert a timeout when dealing with
APs using wep cloacking..... alright.. gotta go back to my
programming..

On Thu, May 28, 2009 at 11:24 PM, cowboym <cowboymshmoo.com> wrote:
>
> Nice demo! Some quick feedback:
>
> It looks like you're only attacking 64-bit Wep protected WAPs - is this
> correct? If so, you may want to include a demo of a 128-bit WEP AP as
> well.
>
> Additionally, if you have the capability of popping a WPA/WPA2 protected
> network, that would be a good thing to include in the demo as well.
>
> Hope this helps,
> -Mike.
>
>
> On Thu, 28 May 2009, subscribe subscribe wrote:
>
>> Hi,
>>
>> Just recently I wrote a program for testing wireless security. The
>> program automates another program called aircrack-ng.
>> Will crack all wireless access point in one command. No need to type
>> anything, just hit enter. Useful if you find it daunting
>> to type commands while roaming around the client's premises during
>> the wireless assessment. Check out the videos at:
>> http://www.youtube.com/watch?v=aYWe4_zcY-I
>>
>> Please comment so I can make improvements before releasing it.. Thanks.
>>
>> ------------------------------------------------------------------------
>> This list is sponsored by: Information Assurance Certification Review Board
>>
>> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
>>
>> http://www.iacertification.org
>> ------------------------------------------------------------------------
>>
>
>

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]