[ Also see: Wireless
Security WAP Security
Bluetooth Security Java
Security ]
Welcome to our roundup of wireless LAN, WiFi and IEEE 802.11
security tools, techniques, news and articles.
In this section:
Useful articles, interesting sites and other resources.
| ArticSoft |
White
papers covering PKI, Certificates, SSL and general
security. |
| CE Windows.net |
802.11
Wireless LAN PC Cards Manufacturer, Driver Link, Power
Requirements, Transmit Power Output, Wired Equivalent Privacy
(WEP)... |
| Cigital |
Wireless
Access Points and ARP Poisoning (PDF, 466Kb) Wireless
vulnerabilities that expose the wired network. |
| CNN |
Protect
your network Simple tips to keep intruders away from your
wireless network. |
| HomeRF |
HomeRF
Security Comparison (Zipped PDF) Though the possibility of
attacks similar to those leveled at 802.11b systems exist in
theory for HomeRF systems, the relative level of difficulty is
very different. HomeRF is stronger in preventing unauthorized
access due to its frequency hopping technology and since
attempts are not enabled by commercially available equipment.
The security of wireless LANs has recently become an area of
much concern. Several popular articles 1 and academic papers 2
have identified security concerns with the IEEE 802.11
standard. |
| IBM |
Wireless
Security Auditor (WSA) WSA is an IBM research prototype of
an 802.11 wireless LAN security auditor, running on Linux on
an iPAQ PDA. WSA automatically audits a wireless network for
proper security configuration, to help network administrators
close any vulnerabilities before the hackers try to break in.
Going
up the wireless stack (12/01) When broadcasting your data
through the air, watch out for the man in the middle. Think
you've got a trusted wireless connection to a trusted party?
Don't be too sure. Attackers can use a technique known as ARP
spoofing to convince two machines that they are communicating
with each other, when both are actually connected to a third
computer under hostile control. Larry Loeb explains how
crackers can implement such so-called man-in-the-middle
attacks -- and how you can stop them.
|
| IEEE 802
LMSC Conference Tutorial |
Overview
of 802.11 Security (3/01, MS PowerPoint, 162KB) IEEE
802.11 Security. Goals, Major Issues, ... |
| Infowar |
Infowar, InfoSec Portal, Information Warfare, Security,
Cybercrime. Security portal covering a range of topics with
news, jobs and more... |
| Intel |
Overview
of IEEE 802.11b Security There is much regulatory and
standards work in the area of security, especially in
wireless. The wireless LAN standard IEEE 802.11b provides a
mechanism for authentication and encryption. This paper
describes the 802.11b security protocols and the implications
they have for user privacy, ease of use, and import/export
issues... |
| ISS |
Wireless
LAN Security 802.11b and Corporate Networks (PDF, 540Kb)
This paper addresses the security concerns raised by both
current and upcoming 802.11x network technologies. |
| Microsoft |
Recommendations
for IEEE 802.11 Access Points This article provides
information about how to make available IEEE 802.11 wireless
technology in diverse environments around the world. It
provides guidelines for making wireless technology manageable
by creating wireless access points that support specific
functionality and are configured in several ways.
Wireless
Network Security with IEEE 802.1x Enhanced wireless
networking support based on the Wi-Fi (802.11b) standard was
added to the Windows operating systems beginning with Windows
2000. Now, support for the IEEE 802.1x security protocol in
Windows XP lets you roam from access point to access point
within your corporate LAN. You can also roam to wireless
networking hot spots...
Wireless
802.11 Security with Windows XP The major deployment issue
for IEEE 802.11 wireless LANs is managing access to the
network and privacy of the wireless traffic. The IEEE 802.11
standard defines the use of WEP pre-shared keys for access
control and privacy. However, managing pre-shared keys across
thousands of workstations is infeasible.
|
| Netagent Wireless Security |
Oben findest du die Links auf die Seiten der Städte wo die
einzellenen Wavelans eingezeichnet sind. Falls du auch schon
einige Wavelans gefunden hast die nicht auf unseren Maps oben
sind kannst du uns diese bekanntgeben und wir werden sie
veröffentlichen.
Netagent Austrian Wireless Security and Wardriving pages |
| Network Security Library |
Windows, Unix, NetWare, Firewalls, Intrusion Detection,
Security Policy, WWW, NCSC & DoD Rainbow series, Harmless
hacking... |
| Network World |
Intel
eyes Wi-Fi security (8/05) Intel is developing a way to
locate a Wi-Fi user by timing how long it takes for packets to
travel to and from a wireless access point, which could
prevent users outside a house or office from accessing a Wi-Fi
network indoors. Knowing where a system is located also could
be an invaluable aid in finding and fixing hardware problems
in data centers, and informing mobile device users of places
or services nearby, said Justin Rattner, an Intel senior
fellow. In the demonstration, the access point timed how long
it took a packet to travel out to the client system and come
back. From the length of that round-trip time, it extrapolated
how far away the client was. |
| NIST Computer Security
Resource Center (CSRC) |
The loss of confidentiality and integrity and the threat of
denial of service (DoS) attacks are risks typically associated
with wireless communications. Malicious users may gain access
to organizational systems and information and compromise the
confidentiality of the organization, its users, and its
network. These same users may corrupt the organization’s
data by spreading viruses, or they may simply launch attacks
that prevent users from accessing the network. The purpose of
this document is to provide organizations with guidance for
establishing secure wireless networks. Organizations are
encouraged to tailor the recommended guidelines and solutions
to meet their specific security or business requirements. |
| OPSEC |
Open, multi-vendor security framework with over 300 partner
organisations. |
| VPN Labs |
Wireless security resources related to VPN technology. Open
community for VPN and security enthusiasts. |
| WinGuides |
The Windows
Security Guide provides information and resources to
secure the Windows operating system and networks with details
about the latest vulnerabilities and fixes, articles and
technical support. |
| Fluhrer, Mantin, Shamir |
Weaknesses in the
Key Scheduling Algorithm of RC4 (PDF) In this paper we
present several weaknesses in the key scheduling algorithm of
RC4, and describe their cryptanalytic significance. We
identify a large number of weak keys, in which knowledge of a
small number of key bits suffices to determine many state and
output bits with non-negligible probability. We use these weak
keys to construct new distinguishers for RC4, and to mount
related key attacks with practical complexities. |
| The Unofficial
802.11 Security Web Page |
Lots of people are interested in IEEE 802.11 security
nowadays. Given that level of interest, there's a need for
accurate information on how the current standards work, what's
wrong with them, and the current thinking on how to fix the
problems. This page tries to gather relevant papers and
standards in a single place. |
| Zone-H |
Your IT security help point. |
| AirMagnet |
AirMagnet
provides a robust set of tools in a single, highly usable
application that operates on a Pocket PC. These tools help to
quickly eliminate connection problems, maintain network
performance levels and ensure a high level of network
security. The AirMagnet Handheld's product suite includes
tools in the areas of Wireless Administration, Installation
Surveying, Security Assessment, Connection Troubleshooting and
Performance Management. |
| AirSnort |
AirSnort is a wireless LAN (WLAN) tool for Linux which
recovers encryption keys. AirSnort operates by passively
monitoring transmissions, computing the encryption key when
enough packets have been gathered. |
| Berkeley Varitronics
Systems (BVS) |
YellowJacket
a wireless receiver module designed to work with Compaq’s
iPAQ PDA in sweeping, analyzing and optimizing 2.4 GHz W-LANs
and WISPs. The receiver measures all 14 DSSS network channels
which operate on the IEEE 802.11b standard allowing the user
to determine the AP (Access Point), PER (Packet Error Rate),
Multipath (Ec/Io), SSID and RSSI signal levels aiding in
locating the hub and access points of neighboring WLANs.
YellowJacket
Plus is a wireless receiver system designed specifically
for sweeping, analyzing and optimizing 2.4 GHz W-LANs and
WISPs. The instrument measures coverage of DSSS networks which
operate on the IEEE 802.11b standard allowing the user to
determine the AP, PER, Multipath (Ec/Io) and RSSI signal
levels aiding in locating the hub and access points of
neighboring WLANs. An optional internal 12-channel GPS
receiver may be added which allows Yellowjacket users to
geo-time stamp every measurement taken for post processing
later.
Grasshopper
WLAN Receiver is a handheld, wireless receiver designed
specifically for sweeping and optimizing Local Area Networks.
The instrument measures coverage of direct sequence CDMA
networks which operate on the IEEE 802.11b standard allowing
the user to measure and determine the AP, PER and RSSI signal
levels aiding in locating the hub and access points throughout
a building. |
| eEye |
eEye's integrated family of security solutions has already
empowered thousands of IT administrators and security
professionals to confidently safeguard their valuable digital
assets. Working in conjunction with popular tools such as
firewalls and intrusion detection systems, eEye's products
include: Retina Network Security Scanner, SecureIIS
Application Firewall, Iris Network Traffic Analyzer, and REM -
Remote Enterprise Management. |
|
Ethereal |
Ethereal
is a free network protocol analyzer for Unix and Windows. It
allows you to examine data from a live network or from a
capture file on disk. You can interactively browse the capture
data, viewing summary and detail information for each packet.
Ethereal has several powerful features, including a rich
display filter language and the ability to view the
reconstructed stream of a TCP session. |
| Kismet |
Kismet is a 802.11b wireless network sniffer. It is capable
of sniffing using almost any wireless card supported in Linux,
including Prism2 based cards supported by the Wlan-NG project
(Linksys, Dlink, Rangelan, etc), cards which support standard
packet capture via libpcap (Cisco), and limited support for
cards without RF Monitor support. |
| ManageEngine |
Effective
WLAN Management With Distributed RF Sensors: A White paper.
Monitor your RF spectrum 24x7 for intrusions and other
potential threats using distributed RF sensors. This paper
examines the importance and benefits of distributed RF sensors
in managing wireless networks and describes the critical role
these sensors play in WLAN management software.
Whitepaper
on WLAN - Rogue Detection and Blocking This paper presents
an overview of rogue devices, commonly used techniques in
detecting and blocking rogues, comparison of various tools
available in the market, and how WiFi Manager does the job
cost effectively.
|
| NetStumbler |
NetStumbler is a Windows utility for 802.11b based wireless
network auditing.
MiniStumbler is Network Stumbler for Pocket PC 3.0 and 2002.
Supports ARM, MIPS and SH3 CPU types.
|
| Sniffer Technologies |
Sniffer
Wireless manages network applications and deployments on
802.11a and 802.11b networks. It spots security risks in real
time, identifies network problems quickly, and reduces network
operating costs.
Sniffer
Portable a PDA-based wireless physical layer security and
performance tool. This product pinpoints security breaches and
user slowdowns in the wireless LAN 802.11B radio frequencies.
Provides Expert analysis, and saves capture files for use with
the standard Sniffer Wireless product. |
| WEPCrack |
WEPCrack is a tool that cracks 802.11 WEP encryption keys
using the latest discovered weakness of RC4 key scheduling. |
| WildPackets |
AiroPeek
AiroPeek NX combines expert analysis capabilities with
WildPackets' wireless LAN analysis technology. This allows IT
professionals to manage every segment of their extended
network with powerful problem detection heuristics and
802.11-specific diagnostic capabilities. AiroPeek NX is the
only wireless management tool you need to deploy, secure, and
troubleshoot your wireless LAN. |
| WinPcap |
The Free Packet Capture Architecture for Windows |
| WLANexpert |
A small utility that connects for the WPC11 (and perhaps
other Prism chipsets). Features include Link errors,
Interference (in dbm), Signal Strength (in dbm), Change Tx
power in 10 mW steps, Test the VSWR of all channels (1-13) |
| eEye Digital Security |
Retina
Network Security Scanner Vulnerability Detection &
Remediation. An attacker need only detect one weakness to
breach your network and take control; in other words, every
potential security weakness must be identified and secured in
order to protect your company’s digital assets. |
| IBM |
Wireless
Security Auditor (WSA) an IBM research prototype of
an 802.11 wireless LAN security auditor, running on Linux on
an iPAQ PDA. WSA automatically audits a wireless network for
proper security configuration, to help network administrators
close any vulnerabilities before the hackers try to break
in.
Distributed
Wireless Security Auditor (DWSA) self- diagnostic tool
that can automatically monitor 802.11 wireless networks and
report security problems in real-time. If the server detects
an unknown access point or one with a security configuration
violation, the server computes the physical location of the
offending access point using the signal strength observed by
the client and the locations of some known valid access points
through a process of tri-lateration. The physical location of
the access point together with the violation is then reported
to the administrator. |
| SANS |
Glossary
of Terms Used in Security and Intrusion Detection |
| Tivoli Software |
Tivoli
Intrusion Manager connecting your network to the Internet
opens up many potential security threats and vulnerabilities.
Tivoli Intrusion Manager is an entry-level security product
aimed at midsize companies to quickly implement an effective
solution to help mitigate and manage intrusions, and help
protect the network and Web servers. It offers a single event
and problem management console in order to monitor events and
quickly respond to security attacks.
|
| ZDNet Australia |
UNIX
tools track down hackers Catching malicious hackers isn't
impossible. With the right tools, you can gather important
information to help stop hack attacks. How can you use common
UNIX tools to hunt down network attackers? You have determined
that your network has been breached. There are two standard
approaches on what to do next... |
| Certicom |
Cryptographic
Toolkits MobileTrust managed certificate services enable
secure stock trading, online banking, enterprise, e-mail and
healthcare applications from mobile phones, pagers, and PDAs. |
| Check Point Software
Technologies |
"We Secure the Internet". The company's Secure
Virtual Network (SVN) architecture provides the infrastructure
that enables secure and reliable Internet communications. |
| Columbitech |
Columbitech's wireless VPN is the first wireless VPN product
to be certified by Check Point Software Technologies Ltd.'s
OPSEC program. OPSEC
(Open Platform for Security) is the industry's open,
multi-vendor security framework. Columbitech Wireless VPN
supports Checkpoint's VPN-1 and FW-1. |
| Cryptek Secure
Communications |
Secure network products. |
| Freedom |
Freedom® Privacy & Security Tools is a flexible suite
of tools to secure your PC and protect your privacy on the
Internet. With its powerful and easy to use features, it is a
must-have to defend yourself against malicious hackers and
security threats and to keep your personal information
completely private! |
| PGP Security
|
PGPwireless PGP Encryption
for the desktop/server world on your WinCE or Palm compatible
handheld.
PGPfire - Distributed
Firewall and Personal Intrusion Detection Now remote and
distributed users can benefit from the security of an
enterprise ready distributed firewall. Includes personal
firewall and intrusion detection system in one easy-to-use
package.
PGP e-ppliance 5 Firewall
& VPN - Network Privacy PGP e-ppliance 5
combines Firewall and Virtual Private Networking (VPN)
capabilities in a single, integrated software and hardware
security system. |
| ReefEdge |
ReefEdge Inc.'s Connect System 3.1 is a comprehensive WLAN
security package that addresses 802.11 vulnerabilities with
virtual private network technology. ReefEdge Connect System
can secure any 802.11 WLANs - be they a, b or g variants. |
| Senforce Technologies
(formerly Rappore ) |
Rappore Shield is a software-only application designed to
protect against malicious hacking attacks on notebook
computers without sacrificing the advantages, power, and
simplicity of wireless computing. Rappore Shield users need
not worry about unintentional or incorrect misuse of their
wireless capabilities. |
| Tivoli Software |
Access Management: Tivoli
Policy Director, Tivoli
Policy Director for MQSeries, Tivoli
Privacy Manager, Tivoli
Global Sign-On
Risk Management: Tivoli
Risk Manager
Identity Management: Tivoli
User Administration, Tivoli
Security Manager
|
| Wireless
Lockdown :: wireless network security |
Find tools, advisory's, howto's, guides and help about
802.11 security. These resources aid in securing your WiFi
network. |
|
|
WLAN Security Headlines
Network World How Wi-Fi attackers are poisoning Web browsers
Public Wi-Fi networks such as those in coffee shops and airports present a bigger security threat than ever to computer users because attackers can intercede over wireless to "poison" users' browser caches in order to present fake Web pages or even steal data at a later time. That's according to security researcher Mike Kershaw, developer of the Kismet wireless network detector and intrusion-detection system, who spoke at the Black Hat conference.
About our headline feed
|
|
Network World How to Set Up a Virtual Private Network
If you work on the go fairly often, you've probably hopped on a public wireless network at least once or twice. You should have also figured out how to keep your data safe when you're on such a network, by taking precautions such as using your company's virtual private network--if available--or an encrypted Web tunnel such as Hotspot Shield.
FreeNewsFeed Security Alert: Beware of Tiffany Trojan on the Attack
Malware writers are using a luxury name to hack into your computer. Security watchdog Sophos is reporting that e-mails coming from a Tiffany.com address and carrying the attachment copy.zip are looking to install a malicious Trojan horse on your PC.
"This may be a deliberate ploy on the part of the criminals behind the attack to tempt more people into opening the attachment," Graham Cluley, senior security analyst at Sophos, wrote in a blog post. "Of course, it's child's play to forge e-mail header inform...
IEEE Fast Transmission to Remote Cooperative Groups: A New Key Management Paradigm
The problem of efficiently and securely broadcasting to a remote cooperative group occurs in many newly emerging networks. A major challenge in devising such systems is to overcome the obstacles of the potentially limited communication from the group to the sender, the unavailability of a fully trusted key generation center, and the dynamics of the sender. The existing key management paradigms cannot deal with these challenges effectively. In this paper, we circumvent these obstacles and close this gap by ...
The Register If you've bought DRM'd film files from Acetrax, here's the bad news
We hope you have plenty of spare time, you'll need it
Sky will next month shut down Acetrax, a website that streams movies and offers downloads of DRM-encrypted films to paying punters.…
Encryption News Odin U Disk Encrypt Creator 7.6.3 (Windows)
Source: Odin Share Company Free registration required Odin U Disk Encrypt Creator is a very useful U disk/Flash drive encryption tool. Its friendly interface guides you encrypt your U disk/Flash drive/Portable Hard Drive or Mobile Hard Drive easily. Odin
About our headline feed
|
|
Virus Alerts:
 
|
Latest Vulnerabilities:
|
|
