WLW042 – Don’t DoS Your Boss

Don’t DoS Your Boss

Audio clip: Adobe Flash Player (version 9 or above) is required to play this audio clip. Download the latest version here. You also need to have JavaScript enabled in your browser.

Right-Click Here To Download This Episode

The title of this week’s Wireless LAN Weekly episode comes from an article I read in the New York Times back in 1993. It seems the New York city parks department was having a bit of trouble with some overly rambunctious male youths terrorizing some of their female counterparts in the local swimming pools. They had started a trend of ‘whirlpooling’ by circling and taunting the girls in the pool.

To counteract this bad behavior, the mayor’s office came out with a marketing campaign targeted at the miscreants attempting to illicit better behavior. They made up posters, bumper stickers, and even had the mayor start wearing buttons that stated, “Don’t Diss Your Sis”.

In this episode we’ll be talking about Wireless Intrusion Prevention Systems running amok, causing harm to your own wireless network. Thus, “Don’t DoS Your Boss”.

Hopefully some of these stories will ring true, and you can learn from these mistakes others have already made.

Enjoy

We’d love to have you subscribe to our RSS feed – just click the button in the upper right corner of the web page. Until next week, thanks for listening!

If you have any feedback on the show – please drop an e-mail to feedback@WirelessLANProfessionals.com.

Subscribe To The Wireless LAN Weekly Podcast:

Zune iTunes RSS Feed

Posted February 16, 2011 by   ·  3 Comments - Join The Conversation  

Wireless LAN Professionals Update

This week marks a year since I’ve been posting and blogging on the Wireless LAN Professionals website.

In the past year we’ve had the following successes:

  • A total of 41 Podcast Episodes
  • A total of 42,239 downloads of those episodes
  • Slightly more than 1,000 downloads per episode
  • The most popular episode had over 3,100 downloads
  • The least popular episode had only 500 downloads
  • 60% of the downloads are from the US
  • With the other leading countries (in order): China, Canada, UK, Australia, German, India, New Zealand
  • People have downloaded the podcast to over 100 countries
  • The Wireless LAN Professionals website gets an average of 100 hits per day normally, but bumps up to an average of 200 on Wednesdays (the day the Podcasts are released)
  • The WLP website has received 65,000 hits his year and over 20,000 downloads of white papers
  • My twitter account http://twitter.com/keithrparsons currently has 943 followers and over 5,000 posts

I am posting these statistics for two reasons. The first is to give me some incentive to get back up on that horse and start regular weekly podcasts again. I’ve been a bit lax lately, and I needed some incentive to get back in the groove of weekly podcasting. Realizing there is a fairly decent sized audience will do that for a guy.

The second reason, and probably more important to the readers of this blog. You have a community!

There is a thriving community of people who are interested in the career choice of being a Wireless LAN Professional. Well over 1,000 people that I can track put themselves in this category. So get involved! Follow along on the twitter streams, follow the other like-minded individual’s fantastic blogs, post comments and perhaps even start your own blogs on the subject. (see the website’s resources tab for more places to get involved)

I’m a firm believer that:

Knowledge is like manure, if you spread it around, it will help things to grow. If you try to hold it yourself, you’ll just start to stink.

So please get involved in this community. Start following others on twitter, share your information, post your posts, and just get involved.

Keith Parsons – February 2nd, 2011

Posted February 2, 2011 by   ·  4 Comments - Join The Conversation  

Wireless LAN Penetration Testing Course

Wireless Penetration Testing

Years ago, a friend of mine, Kimberly Graves and I had been teaching both CWSP and CEH courses. At the end of those courses, our students would ask to see our ‘instructor kit’. They wanted to have the bits that we used in class to show off Wireless Hacking.

Kimberly was the author to the Certified Ethical Hacker study guide, and I helped with the technical edits on that book. I was also a Certified Hacking Forensic Investigator and Licensed Penetration Tester trainer for EC Council at the time.

So to react to the market, we developed a Wireless Hacking Course… but couldn’t call it that – since some companies and government agencies wouldn’t fund training with the word ‘Hacking’ in the title.

So we called it “Wireless LAN Security Assessment Toolkit” – and it was a course than not only taught wireless hacking, but also came with all the parts one might have needed. Spectrum Analyzers, 5 WLAN NICs, access points, hand-held client devices, and all the software pre-configured, and finally, even a laptop to run it all on.

This was a wildly successful class in its time. 

Both Kimberly and I have moved on and now both work for vendors, Kimberly does Course Development and Training for Aruba, and I am now doing Expert Services for Ruckus.

A couple of weeks ago, I was asked if I had any materials on the flow of Wireless Penetration Testing…

So we thought it might be a good idea to take the materials we produced for the WLSAT course and release them to the public. We’re not releasing any copyrights… just allowing folks on the Wireless LAN Professionals website to download and use them for personal use.

Below is PDFs of the printed student materials included in the Wireless LAN Security Assessment Toolkit course. Yes, these are a couple of years out of date… but many of the concepts and techniques used are still valid today.

You can check out the old marketing web page with the details on the old course. We’ve included PDFs from each of the chapters, so you can download them one at a time if you’d like.

Enjoy!

Here are the files for your perusal:

00 Student Kit and Classroom Setup.v7

01 wireless packet captures and conection analysis review.v7

02 Lab 2 Discovering, Locating, and Accessing WiFi Networks.v7

03 Sniffing and Capturing Data.v7

04 Encryption and Authentication Mechanisms.v7

05 Rogue Access Points and Client Hijacking.v7

06 Wireless Denial of Service Attacks.v6

07 Using a Wireless Instrusion.v7

08 Creative Advanced Attacks.v7

09 8oh2 custom linux script.v7

Appendix – Linux WLAN NIC Command Review

Appendix C – Linux Flash Cards v1.4.1

LinuxQuickReferenceGuide-v1.6.5

Wireless Penetration Testing Flowchart

Posted January 12, 2011 by   ·  6 Comments - Join The Conversation  

Next Page »