Network Recon with Kismet - more

By Humphrey Cheung, published on May 10, 2005
Source: Tom's Guide US | Keywords: , , , | Themes: Business Notebooks
Contents

8. Network Recon with Kismet - more

Kismet starts in "autofit" mode, which doesn’t list APs in any meaningful order. Press "s" to get to the Sort menu (Figure 17). Here you can specify sort orders, which will organize the APs better.

Figure 17: Sort options in Kismet
(click image to enlarge)

Press "c" and the access points will be ordered by channel. (Figure 18)

Figure 18: Sorting WAPs by channel
(click image to enlarge)

Kismet will by default hop through channels 1 to 11. Use the cursor keys to move the highlight bar to your SSID and press "L" (note capital "L") and Kismet will lock on the SSID’s channel (Figure 19). You will notice that the packet numbers of other APs may still continue to increase. This is because many channels overlap each other in frequency.

Figure 19: Locking the channel scanning in Kismet
(click image to enlarge)

Now that we are reasonably sure that Kismet is working, let’s see what happens when the target computer on the network starts transmitting information. In most cases, this will be receiving / sending of email or web surfing. Start the target computer, while keeping the scanning laptop in Kismet.

As the target computer boots into Windows and connects to the target AP, you will notice a surge in regular and encrypted packets being captured by Kismet. You’ll be using these packets in the attacks described in Part 2 of this series.

Comments | Print | Send to a friend

Related albums

  How to Make a Solar-Powered DS Lite  
How to Make a Solar-Powered DS Lite
  How to Make a Solar-Powered DS Lite  
How to Make a Solar-Powered DS Lite
  How to Make a Solar-Powered DS Lite  
How to Make a Solar-Powered DS Lite
  The Price of Geekdom: How to Lower the Cost of Playing Games  
The Price of Geekdom: How to Lower the Cost1

Sponsored links

Comments

Anonymous 04/20/2008 11:05 PM
Hide
-0+

Nice guide, thanx. When I tried to crack WEP, I have found it quite difficult, therefore I have bought a guide on eBay how to do it. I don't remember name of this guy, try to do a search on "crack wifi". His manual really worked for me and it was cheap. So it was nobrainer for me.

Anonymous 10/05/2008 6:10 PM
Hide
-0+

well, i'm still trying to get the monitor module on my screen but it seems that my wi-fi lan card (Broadcom 802.11/g) doesn't allow the Airpeek to do it. By the way, my OS is Windows vista. Is it possible u help me with this? any tip is welcome..
thanks

Anonymous 10/19/2008 12:35 PM
Hide
-0+

U have to change ur lan card to Intel.Broadcom is not good working one.

Anonymous 12/13/2008 8:42 PM
Hide
-0+

Here's a tutorial on how to crack WEP on a Mac without using the command line...

http://bit.ly/aiSw

Anonymous 02/08/2009 9:38 PM
Hide
-0+

what wireless card should i use for laptop. email me at jimmihendrix82@yahoo.com

Comments are closed on this page.

Sponsored links