Skynet — back to life

Posted by & filed under Linux, Pen Testing, Projects, Security, WiFi.

The other day, I decided to bring my old “Skynet” device back online. The master came right online, but the drone was having some problems. I worked it out, and it’s all working correctly now. w00t. Just waiting on my N-Female to RP-TNC connector and I will be read to rock with the Yagi.



Also, I noticed that Kismet-Newcore is out which has a lot of nice features. There is also a plugin available called “Lorcon” that allows kismet to inject and sniff 802.11 frames. Sweet! I will compile both on the rother when I get time…

Ultimate Wardriving Setup

Posted by & filed under Pen Testing, Projects, Security, WiFi.

After working pretty late last night I finally got all the pieces working for my wardriving setup. I posted about my original idea here, and this is the results of my labor. The premise of this is to avoid having to use a laptop to scan for AP’s.

Now on to the hardware setup…

  • Linksys NSLU2 – Reflashed to Openwrt/jffs. This unit has two USB ports; one is used for storage to a memory stick and the other is used for my BU-353 GPS reciever.
  •  Linksys WRT54GS – Reflashed to OpenWrt/jffs.

The WRT54GS  runs the kismet drone and a little script to enable the AP to continuously hop channels searching for AP traffic. All the data is passed to the kismet server on the NSLU2 for processing and/or display.

The NSLU2 is the central piece of the system. It runs the kismet server which receives data from the WRT drone, generates GPS positioning data for the APs, and logs it all to the memory stick.This allows me to easily retrieve the memory stick, read the logs in on a PC, analyze the TCP dumps, and feed the data into GPSDrive for AP waypoint mapping.

Now I just need to find my power invertor and my rig will be complete!

Globalsat BU-353 GPS Reciever

Posted by & filed under Pen Testing, Projects, WiFi.

I just got a Globalsat BU-353 GPS Reciever in the mail. Pretty sweet so far, and the plan is to use kismet to create waypoints for gpsdrive to read in later to map out APs My brainstorm:

  • WRT54GS Running OpenWRT
    This will handle the scanning, sending its results via ethernet
  • Linksys USB NAS (has a ethernet port and 2 USB ports). Running OpenWRT
    This will handle writing the kismet data to a external HD as well as providing GPS data

I believe I should be able to attach a ext3 USB drive to the nas so it can write directly to the disk from the nas. Then, the wrt router running as a kismet drone sends the scan data back to the NAS and written to the external drive. The NAS would also be running GPSd with my Globalsat GPS attached. Both devices connect directly together via ethernet. The kismet drone will be configured to read the GPS data coming from the NAS on the GPSd port. As long as I can natively write to the attached USB drive on the NAS then I don’t see any thing that should be an issue pulling this off.

I was researching installing a USB port or a SD slot and came up with these interesting link that I will include just for the heck of it.

Whew I almost forgot how much cool stuff is in Sparkfun’s website.

Foundstone Security tools

Posted by & filed under Pen Testing, Security.

“Hackers and malicious insiders are an undeniable threat to your organization’s network. They have sophisticated tools and backdoor programs at their disposal with which to steal information, perform unlawful or unauthorized activities, and cover their tracks. Security professionals charged with protecting their organizations can become overwhelmed in developing specialty applications to combat these threats.

To help bridge this gap, Foundstone offers several unique utilities that you can add to your network security arsenal.”

Foundstone SASS tools like Hacme Casion and Hacme Bank are great learning tools.…

John Strand ( also has some great videos on the topic.