Recently read “<a href=”http://oreilly.com/catalog/9780596101442/” title=”wireless hacks”>Wireless Hacks</a>” by Rob Flickenger, an <a href=”http://oreilly.com/” title=”oreilly dot com”>OReilly book</a>. here are some of the tools that he mentions in the book, wanted to capture them in one place:<br />n<br />nNetStumbler (<a href=”http://www.stumbler.net/” title=”net stumbler”>stumbler.net</a>) to find wireless networks in range.<br />n<br />nKismet (<a href=”http://www.kismetwireless.net/” title=”kismet wireless”>kismetwireless.net</a>) is a passive network scanner that finds networks AND clients.<br />n<br />nDriftnet (<a href=”http://ex-parrot.com./~chris/driftnet/” title=”driftnet”>ex-parrot.com./~chris/driftnet/</a>) for linux, grabs images floating around the wireless network and displays them. Considered an invader of privacy.<br />n<br />nIperf (<a href=”http://www.noc.ucf.edu/Tools/Iperf/” title=”iperf”>www.noc.ucf.edu/Tools/Iperf/</a>) for estimating network performance.<br />n<br />ntcpdump on linux. Best used with this filter:<br />ntcpdump -i eth0 -n ‘port ! 22′<br />n<br />nethereal (<a href=”http://ethereal.com/” title=”ethereal”>ethereal.com</a>) is a powerful protocol analyzer.<br />n<br />nnmap (<a href=”http://insecure.org/” title=”nmap at insecure dot org”>insecure.org</a>) is a good active scanner.<br />n<br />nngrep (<a href=”ngrep.sourceforge.net” title=”ngrep”>ngrep.sourceforge.net</a>) is a packet capturing tool, similar to tcpdump or ethereal.<br />n<br />nntop (<a href=”http://www.ntop.org/” title=”ntop”>ntop.org</a>) provides real time network stats.<br />n<br />nAirSnort (<a href=”http://airsnort.shmoo.com/” title=”airsnort”>airsnort.shmoo.com</a>) is a dictionary attack tool to test the strength of your WEP key.<br />n<br />nNoCatAuth Portal (<a href=”http://nocat.net/” title=”no cat”>nocat.net</a>) creates a captive portal, which a user must go through before getting out to the wider internet.<br />n<br />nNoCatSplash (<a href=”http://nocat.net/downloads/NoCatSplash/” title=”no cat splash”>nocat.net/downloads/NoCatSplash</a>) is just a splash screen users will get when on your network.<br />n<br />narpwatch (<a href=”http://ee.lbl.gov/nrg.html” title=”arp watch”>ee.lbl.gov/nrg.html</a>) is a tool to keep a watch for people fiddling with their MAC addresses by tracking the MAC address/IP address pairs as ARP replies pass through the network. Also can be used to keep track of who is using your open network.