Wireshark · Wireshark-users: Re: [Wireshark-users] Wireshark Audit Guide

Wireshark-users: Re: [Wireshark-users] Wireshark Audit Guide

From: "Frank Bulk" <frnkblk@xxxxxxxxx>

Date: Sun, 12 Apr 2009 22:01:27 -0500

Wireshark is the wrong tool for this need – I would start with AirMagnet or AirDefense’s products.

Frank

From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of Lockhart, Stephen
Sent: Thursday, April 09, 2009 3:17 PM
To: wireshark-users@xxxxxxxxxxxxx
Subject: [Wireshark-users] Wireshark Audit Guide

Does anyone know where I can find an audit guide telling how to use wireshark to do an audit of a wireless network? We are interested in areas like what information we should be looking for in packets that is of a security nature and how filter for that information. For example, can we filter for passwords on unencrypted messages. We’re not interested in injecting packets or cracking WEP or things like that…but just queries of packets for information that could adversely affect security. Thanks.

Steve Lockhart CIA, CISA
Information Systems Auditor
Office of Inspector General
U. S. House of Representatives
386 Ford House Office Building
Washington, DC 20515-9990
Phone (202) 225-1137
Fax (202) 225-4240

References:
- [Wireshark-users] Wireshark Audit Guide
  - From: Lockhart, Stephen

Prev by Date: Re: [Wireshark-users] TCP Previous segment lost > connection lost (bank transaction)
Next by Date: Re: [Wireshark-users] incorrect timestamp - analyzing rtp streams
Previous by thread: [Wireshark-users] Wireshark Audit Guide
Next by thread: [Wireshark-users] wireshark and RTP
Index(es):
- Date
- Thread