The associated whitepaper from the authors has been released on the
aircrack-ng links page:
http://dl.aircrack-ng.org/breakingwepandwpa.pdf
--
Raul Siles
www.raulsiles.com

Early details: http://radajo.blogspot.com/2008/11/wpatkip-chopchop-attack.html

On Fri, Nov 7, 2008 at 5:41 PM, Stephen John S

[ more ]  [ reply ]

Just as a heads up, one of the author(s) of the first practical crypto
attack against WPA secured wireless networks, besides
launching a dictionary attack when a weak pre-shared keys(PSK)
are used, Erik Tews, will be speaking at PacSec in Tokyo, on
Thursday next week. More specifically, his attack u

[ more ]  [ reply ]

http://lwn.net/Articles/300758/

--
Raul Siles
www.raulsiles.com

[ more ]  [ reply ]

Hi
I'd like to announce the release of version 1 of Jasager.

Jasager is an implementation of Karma for the Fon or other AP running OpenWrt.

Features include:
A web gui which works in both Firefox and lynx for those ssh sessions
Auto-run scripts which are triggered on client association or when the

[ more ]  [ reply ]

Not exactly security, but wireless related.

Is it possible to use the same antenna for both 802.11b/g and 802.11a even
if they are on different freq ranges? I'm not familiar with antenna differences.

Thinking of running openwrt on an asus wl-500gp replacing the broadcom radio 802.11b/g
with an at

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Also, kiss your wep goodbye for the new pci compliance.

- ----- Original Message -----
From: "Mark Hofman" <mhofman (at) shearwater.com (dot) au [email concealed]>
To: "Joshua Wright" <jwright (at) hasborg (dot) com [email concealed]>
Cc: <lister (at) lihim (dot) org [email concealed]>; <wifisec (at) securityfocus (dot) com [email concealed]>
Sent: Thursday, Septe

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Josh, and all.

> Especially with XPSP3/WZC and Vista, having a cloaked SSID forces your
> clients to ask every AP "Are you my mother?". An attacker can use this

I really wasn't aware of that, I thought it would do the usual "ask to
broadcast" if

[ more ]  [ reply ]

Hi
For anyone who has an eee pc I've created a karma patched version of
madwifi that is based on the version of madwifi Arch linux
distributes.

You can get it from http://digininja.org/files/madwifi-eee-3835-eee.tar.bz2 .

If anyone really wants just the patch I can create one but this is the
lazy

[ more ]  [ reply ]

I know that turning off SSID broadcast doesn't buy you anything, but what
is the impact if it is turned off?

Client issues?
Additional packets?
Any additional security vulnerabilities?

Just trying to prepare for a debate with an auditor on the merits of
broadcast versus non-broadcast of SSIDs.

[ more ]  [ reply ]

dear wireless interested guys ;)

its more than one year ago since i released the first public version
of KisGearth:

>>>
every time i tried kismets gpsmap tool none of the mapservers were
available. so i
decided to write my own tool while using the best resources available.

kisgearth is a small

[ more ]  [ reply ]

We've been working on implementing PEAPv0/MSCHAPv2 and have decided
that because of the MitM possibility of the TLS piece we would like to
find another solution. We were considering TLS but I had a quick
question about TTLS. Is the authentication server certification
enforcement part of the client

[ more ]  [ reply ]

I guess a follow up to my question would be does this RFC excerpt mean
that the TTLS server cert is exchanged during phase 1 of the
authentication, and if so, is it susceptible to the same MitM that
PEAP is?
As part of the TLS handshake protocol, the TTLS server will send its
certificate along

[ more ]  [ reply ]

Hello folks,

Has anyone here managed to inject packets with aireplay-ng and WUSB54GC
(USB), aireplay-ng and module rt73 (ralink)?

And what about WUSB54G (USB) and module rt2570?

Thanks in advance.

Regards,

Ronaldo Castro de Vasconcellos, GIAC [GAWN,GCIH]
CAIS/RNP - Brazilian Academic and Rese

[ more ]  [ reply ]

Hi folks,

after DefCon 16, finally beholder's beta source code is out at official
site:
http://www.beholderwireless.org

Please check md5 and/or pgp signature available at ftp area.

What is Beholder?

An opensource wids to detect a few malicious activities in wifi
environments.
The basic stuff i

[ more ]  [ reply ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Serg B wrote:
| Thanks for all replies so far, just a quick update with more detail...
| I am planning to be using a Linux based laptop with a USB bluetooth
| dongle...
|
| Not sure if the equipment is right or not, so any feedback on that
| front is al

[ more ]  [ reply ]