Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA1 Using Kismet to enhance the security level in enterprise.

Published bySawyer Hipwell Modified over 10 years ago

Similar presentations

Presentation on theme: "Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA1 Using Kismet to enhance the security level in enterprise."— Presentation transcript:

1 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA1 Using Kismet to enhance the security level in enterprise 通訊所 曹爾凱

2 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA2 Outline Introduction Attack scenarios Implement Future work Reference

3 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA3 Introduction Why?  100% security is Where happened?  More than 60% attack is start from What can I do?  Defense in depth

4 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA4 Attack Scenarios: Monkey-Jack Before Monkey-Jack After Monkey-Jack MITM Attack  Taking over connections at layer 1 and 2  Insert attack machine between victim and access point

5 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA5 Management frames 1.Deauthenticate victim from real AP Send Deauthenticate frames to the victim using the access point’s MAC address as the source 2.Victim’s 802.11 card scans channels to search for new AP 3.Victim’s 802.11 card associates with fake AP on the attack machine Fake AP is on a different channel than the real one Attack machine’s fake AP is duplicating MAC address and ESSID of real AP 4.Attack machine associates with real AP Attack machine duplicates MAC address of the victim’s machine. Attack Scenarios: Monkey-Jack

6 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA6 Attack Scenarios: Monkey-Jack

7 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA7 Attack Scenarios: From Internal Misconfiguration WarDriving Enterprise 1

8 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA8 Attack Scenarios: From Internal WarDriving Bad employees Enterprise 2

9 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA9 Attack Scenarios: From Internal DoS!! WISP

10 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA10 Implement Platform  IXP 425 OS  MontaVista Linux Software  Kismet  Snort Develop environment  IXPD 425

11 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA11 Steps Install target and host toolkits. Porting the hostap driver to MontaVista Porting the Kismet to MontaVista Porting the Snort to MontaVista Config kismet and snort Edit rc.local to load hostap driver and start kismet, snort automatically. Test.. & problems.

12 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA12 Defence Scenarios kismet

13 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA13 Future works  Combine Network Management system  Form passive mode to active mode  Locate attacker  Honey pot

14 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA14 Reference WarDriving: Drive, Detect, Defend: A Guide to Wireless Security Kismet website  http://www.kismetwireless.net AirJack  http://802.11ninja.net/airjack/

15 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA15

16 Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA16 My suggest in Wireless LAN security MAC Filtering. Disable SSID Broadcasting. Configure Power output. Connection with VPN. Using WPA!!

Download ppt "Information Networking Security and Assurance Lab National Chung Cheng University Kai, 2004 INSA1 Using Kismet to enhance the security level in enterprise."

Similar presentations

Ethical Hacking Module XV Hacking Wireless Networks.

Ethical Hacking Module XV Hacking Wireless Networks.
Security+ All-In-One Edition Chapter 10 – Wireless Security

Security+ All-In-One Edition Chapter 10 – Wireless Security
Wireless LAN Security Understanding and Preventing Network Attacks.

Wireless LAN Security Understanding and Preventing Network Attacks.
IEEE INFOCOM 2004 MultiNet: Connecting to Multiple IEEE 802.11 Networks Using a Single Wireless Card.

IEEE INFOCOM 2004 MultiNet: Connecting to Multiple IEEE Networks Using a Single Wireless Card.
Man in the Middle Attack

Man in the Middle Attack
7/31/2002Black Hat 2002, Las Vegas NV Advanced 802.11 Attack Mike Lynn & Robert Baird.

7/31/2002Black Hat 2002, Las Vegas NV Advanced Attack Mike Lynn & Robert Baird.
“All your layer are belong to us” Rogue 802.11 APs, DHCP/DNS Servers, and Fake Service Traps.

“All your layer are belong to us” Rogue APs, DHCP/DNS Servers, and Fake Service Traps.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy

Chapter 14 Wireless Attacks, Intrusion Monitoring and Policy
Wireless LAN Security  Setup & Optimizing Wireless Client in Linux  Hacking and Cracking Wireless LAN  Setup Host Based AP ( hostap ) in Linux & freeBSD.

Wireless LAN Security  Setup & Optimizing Wireless Client in Linux  Hacking and Cracking Wireless LAN  Setup Host Based AP ( hostap ) in Linux & freeBSD.
1 Attacking a Wireless Network via De-authentication by Dou Wang, Jiaying Shi, Ying Chen School of Computer Science University of Windsor November 2007.

1 Attacking a Wireless Network via De-authentication by Dou Wang, Jiaying Shi, Ying Chen School of Computer Science University of Windsor November 2007.
Presented by Serge Kpan LTEC 4550.020 Network Systems Administration 1.

Presented by Serge Kpan LTEC Network Systems Administration 1.
Topics in Advanced Network Security 1 Stateful Intrusion Detection for High Speed Networks Christopher Kruegel Fredrick Valeur Giovanni Vigna Richard Kemmerer.

Topics in Advanced Network Security 1 Stateful Intrusion Detection for High Speed Networks Christopher Kruegel Fredrick Valeur Giovanni Vigna Richard Kemmerer.
Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/041 Auditing your Microsoft Windows system Host-Based Intrusion.

Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/041 Auditing your Microsoft Windows system Host-Based Intrusion.
Security Awareness: Applying Practical Security in Your World

Security Awareness: Applying Practical Security in Your World
Man in the Middle Paul Box Beatrice Wilds Will Lefevers.

Man in the Middle Paul Box Beatrice Wilds Will Lefevers.
Wireless Networking. Wi-Fi or 802.11 Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.

Wireless Networking. Wi-Fi or Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.
Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/031 A Real World Attack: wu-ftp Cao er kai ( 曹爾凱 )

Information Networking Security and Assurance Lab National Chung Cheng University 2004/03/031 A Real World Attack: wu-ftp Cao er kai ( 曹爾凱 )
Information Networking Security and Assurance Lab National Chung Cheng University Analysis Console for Intrusion Databases.

Information Networking Security and Assurance Lab National Chung Cheng University Analysis Console for Intrusion Databases.

Similar presentations

Ads by Google