Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Wireless SSID discovery

from [Michael Puchol] Network Security [Permanent Link]
Subject: Re: Wireless SSID discovery
Date: Wed, 22 Dec 2004 09:31:06 +0100 
Hi Andrew,

I know you have got some answers that point you in the right direction, but for the record, some APs use the 'hide SSID' function to remove the SSID from the beacon frames, but they still include it in the probe replies (i.e. Netstumbler will still catch it). A passive scanner such as Kismet would have to wait until a client probed or associated or reassociated to the AP. Other APs will also remove the SSID from the probe responses, or not respond to probes at all (the early Intel APs did this by default, their out-of-the-box SSID was 101).

Hiding the SSID is false security, any person one step higher than a kiddie will be able to get it from sniffing one way or another. It can also affect the network's performance.

Best regards,

Mike
mother@netstumbler.com

Andrew Bagrin wrote: 
I'm doing a wireless pen-test and am able to use aircrack  to crack
the wep key, however, when I use Kismet, Cain, airdump etc.. I can't
get the SSID of a the access point if the SSID broadcast has been
disabled.  Does anyone know how to do this, or is there any tools that
will let you get the SSID even if its not being broadcasted.

Thanks,

Andrew



[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Wireless SSID discovery, Rapaille Max
Next by Date:  Re: pwdump 2 & 3, Barrie Dempster
Previous by Thread:  Re: Wireless SSID discovery, Christopher Blume
Next by Thread:  Re: Wireless SSID discovery, Olivier Fauchon
Indexes:  [Date] [Thread] [Top] [All Lists]