I was wondering if anyone could give me a quick rundown of how Kismet
determines if an AP is running factory configs, as well as if it's
using WPA/WPA2 encryption.
I would imagine that for the factory config, it's just a matter of
looking at the SSID and visible IP ranges, but is there anything more
to it than that??
And encryption method must have to witness a key exchange, or look at
the vendor-specific tags broadcasting the capabilities of the AP.
I was wondering if anyone could give me a quick rundown of how Kismet
determines if an AP is running factory configs, as well as if it's
using WPA/WPA2 encryption.
I would imagine that for the factory config, it's just a matter of
looking at the SSID and visible IP ranges, but is there anything more
to it than that??
And encryption method must have to witness a key exchange, or look at
the vendor-specific tags broadcasting the capabilities of the AP.
Thanks for the help!
JJ
[ reply ]