Network Security: Detailed info on Re: Tool for Identifying Rogue Linksys Routers

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Vuln-Dev

[Top] [All Lists]

Re: Tool for Identifying Rogue Linksys Routers

from [Mike Kershaw] Network Security

[Permanent Link]

Subject:	Re: Tool for Identifying Rogue Linksys Routers
Date:	Fri, 26 Aug 2005 19:37:48 -0400

Is there a scanning tool out there that can determine if there are
unauthorized Linksys (type) routers in a specific VLAN?


Try pinging all hosts using nmap:

Then find MAC addresses that are from Linksys's space. I know macchanger
[1] has a list of what addresses belong to which vendors.


Except, of course, that most Linksys units allow mac cloning through the
web interface.

This won't find anyone who is deliberately avoiding the scan, nor anyone
who messed with the config out of boredom.

-m

-- 
Mike Kershaw/Dragorn <dragorn@kismetwireless.net>
GPG Fingerprint: 3546 89DF 3C9D ED80 3381  A661 D7B2 8822 738B BDB1

Bus Error at 008BE426 while reading byte from DEADBEEF in User data space

pgpURy9F91B8H.pgp
Description: PGP signature

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Tool for Identifying Rogue Linksys Routers, Martin Mkrtchian Re: Tool for Identifying Rogue Linksys Routers, Mike Frantzen Re: Tool for Identifying Rogue Linksys Routers, Joshua Wright Re: Tool for Identifying Rogue Linksys Routers, Graham Wilson Re: Tool for Identifying Rogue Linksys Routers, Volker Tanger Re: Tool for Identifying Rogue Linksys Routers, Mike Kershaw <= Re: Tool for Identifying Rogue Linksys Routers, Dave Hull [Full-disclosure] Re: Tool for Identifying Rogue Linksys Routers, Gregory Boyce Re: Tool for Identifying Rogue Linksys Routers, Tony Rall RE: Tool for Identifying Rogue Linksys Routers, Thomas Guyot-Sionnest RE: Tool for Identifying Rogue Linksys Routers, Matt Mercer Re: Tool for Identifying Rogue Linksys Routers, Paul Halliday

Previous by Date:	MDKSA-2005:154 - Updated python packages fix integer overflow vulnerability, Mandriva Security Team
Next by Date:	MDKSA-2005:153 - Updated gnumeric packages fix integer overflow vulnerability, Mandriva Security Team
Previous by Thread:	Re: Tool for Identifying Rogue Linksys Routers, Volker Tanger
Next by Thread:	Re: Tool for Identifying Rogue Linksys Routers, Dave Hull
Indexes:	[Date] [Thread] [Top] [All Lists]