EH-Net
May 23, 2013, 06:19:03 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
EH-Net > Resources > Tools (Moderator: don) > WiFinger AP Fingerprinting Tool
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: WiFinger AP Fingerprinting Tool  (Read 5624 times)
0 Members and 1 Guest are viewing this topic.
Craig
EH-Net Columnist
Jr. Member
*****
Offline Offline

Posts: 69


View Profile WWW
« on: May 10, 2009, 12:44:25 PM »
Well, we just got back from ChicagoCon yesterday, and we had a blast! The talks were great, the people were great, and we had a really good time.

For those of you who saw our talk, we released a new tool called WiFinger which performs passive access point fingerprinting. We think that this tool can be extremely useful in wireless security, however, a fingerprinting tool is only as good as the signature database that it has, and while we have a handful of signatures right now, we really need more.

So here's where we'd like to ask the community for some help. Obviously, we can't go out and buy every router / access point out there in order to generate signatures for them (as much as we wish we could!), so we're looking for you guys to help us really improve our tool.

If you have an access point that we don't have a signature for, all you have to do in order to contribute to this project is to send us a packet capture file of the AP's beacon packets. That's it; we'll generate signatures for you from there, and we'll definitely give you credit for the submission.

More detailed submission instructions can be found here: http://www.sourcesec.com/2009/05/10/wifinger-signatures-request/ .
Logged
http://www.sourcesec.com
Otter
Newbie
*
Offline Offline

Posts: 41


View Profile
« Reply #1 on: May 11, 2009, 04:49:23 PM »
Quote from: Craig on May 10, 2009, 12:44:25 PM
Well, we just got back from ChicagoCon yesterday, and we had a blast! The talks were great, the people were great, and we had a really good time.

For those of you who saw our talk, we released a new tool called WiFinger which performs passive access point fingerprinting. We think that this tool can be extremely useful in wireless security, however, a fingerprinting tool is only as good as the signature database that it has, and while we have a handful of signatures right now, we really need more.


Great work on this--I enjoyed seeing your talk.  I'll see if I can't grab some signatures for you although I think I only have one very old 802.11b router around that actually has a factory config on it. LOL.

Logged
Craig
EH-Net Columnist
Jr. Member
*****
Offline Offline

Posts: 69


View Profile WWW
« Reply #2 on: May 13, 2009, 08:15:26 PM »
Thanks Otter, we had a lot of fun presenting it too. Smiley

We'd definitely appreciate some capture files of the 802.11b router, and even the ones that you might have that don't have the factory firmware - we want to try to generate signatures for third party stuff too, like DD-WRT and the like.
Logged
http://www.sourcesec.com
Jonley17
Guest
« Reply #3 on: June 23, 2009, 10:17:08 PM »
Sprint is a simple TCP fingerprinting tool that can be used to remotely identify what operating system a host is running.




_________________
Custom banner
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines Valid XHTML 1.0! Valid CSS!
Page created in 0.103 seconds with 19 queries.