http://www.forensicswiki.org/w/index.php?title=Kismet&feed=atom&action=history 2013-05-23T12:16:47Z Revision history for this page on the wiki MediaWiki 1.20.3 http://www.forensicswiki.org/w/index.php?title=Kismet&diff=8433&oldid=prev 2008-09-24T19:19:32Z

<p></p> <table class='diff diff-contentalign-left'> <col class='diff-marker' /> <col class='diff-content' /> <col class='diff-marker' /> <col class='diff-content' /> <tr style='vertical-align: top;'> <td colspan='2' style="background-color: white; color:black;">← Older revision</td> <td colspan='2' style="background-color: white; color:black;">Revision as of 19:19, 24 September 2008</td> </tr><tr><td colspan="2" class="diff-lineno">Line 8:</td> <td colspan="2" class="diff-lineno">Line 8:</td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>}}</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>}}</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td></tr> <tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>'''Kismet''' is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>'''Kismet''' is an 802.11 layer2 wireless network detector, <ins class="diffchange diffchange-inline">[[</ins>sniffer<ins class="diffchange diffchange-inline">]]</ins>, and intrusion detection system.</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>== Overview ==</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>== Overview ==</div></td></tr> </table>

.FUF http://www.forensicswiki.org/w/index.php?title=Kismet&diff=8432&oldid=prev 2008-09-12T20:21:51Z

<p>New page: {{Infobox_Software | name = Kismet | maintainer = Mike Kershaw | os = {{Linux}} | genre = Wireless forensics | license = {{GPL}} | website = [http://www.kismetwireless.net/ www...</p> <p><b>New page</b></p><div>{{Infobox_Software |<br /> name = Kismet |<br /> maintainer = Mike Kershaw |<br /> os = {{Linux}} |<br /> genre = Wireless forensics |<br /> license = {{GPL}} |<br /> website = [http://www.kismetwireless.net/ www.kismetwireless.net] |<br /> }}<br /> <br /> '''Kismet''' is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.<br /> <br /> == Overview ==<br /> <br /> * [[Wireshark]]/[[Tcpdump]] compatible data logging;<br /> * [[Airsnort]] compatible weak-iv packet logging;<br /> * Network IP range detection;<br /> * Built-in channel hopping and multicard split channel hopping;<br /> * Hidden network SSID decloaking;<br /> * Graphical mapping of networks;<br /> * Client/server architecture allows multiple clients to view a single Kismet server simultaneously;<br /> * Manufacturer and model identification of access points and clients;<br /> * Detection of known default access point configurations;<br /> * Runtime decoding of WEP packets for known networks;<br /> * Named pipe output for integration with other tools, such as a layer3 IDS like [[Snort]];<br /> * Multiplexing of multiple simultaneous capture sources on a single Kismet instance;<br /> * Distributed remote drone sniffing;<br /> * [[XML]] output;<br /> * Over 20 supported card types.<br /> <br /> == Intrusion Detection ==<br /> <br /> Kismet will detect following events:<br /> <br /> * Active network scanning (NetStumbler, PocketStumbler, etc);<br /> * SSID brute force attempts;<br /> * Broadcast disconnect/deauthenticate attacks;<br /> * Deauthenticate/disassociate flood;<br /> * Fake APs (new AP on another channel, invalid BSS timestamps);<br /> * Many DoS attacks (zero-length SSID, over-long SSID, etc).<br /> <br /> [[Category:Network Forensics]]</div>

.FUF