[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kismet-wireless
Subject:    Feature suggestion - More advanced 'vulnerable' flag
From:       Magnus Ullberg <UllbergM () abcbank ! com>
Date:       2002-05-29 1:08:47
[Download RAW message or body]

Mike,

I thought of something today..

You give each network a default score of 100.
If the network is set up with the default channel, etc. you subtract 50
points.
If the network ip segment it 169.?.?.? (whatever the Microsoft pseudo-dhcp
segment is) you subtract 10 points.   (Network admin doesnt know enough to
set up a dhcp server)
If they have WEP enabled add 50 points.
If Kismet sees CDP traffic, add 5 points (you can find out a *lot* of info
about the network)
etc.

That way Kismet can give the network a vulnerability score, and if it's less
than 100 you flag it as vulnerable.
Obviously the ammounts above needs to be tweaked, i'm just trying to explain
my idea..

What do you think?
Is this going outside the scope of Kismet?

Magnus Ullberg
Network Coordinator

Area Bancshares Corporation
Networking Department
230 Frederica St.
Owensboro, KY 42301


[prev in list] [next in list] [prev in thread] [next in thread]