Introduction
bsd-airtools is a package that provides a complete toolset for wireless 802.11b auditing. Namely, it currently contains a bsd-based wep cracking application, called dweputils (as well as kernel patches for NetBSD, OpenBSD, and FreeBSD). It also contains a curses based ap detection application similar to netstumbler (dstumbler) that can be used to detect wireless access points and connected nodes, view signal to noise graphs, and interactively scroll through scanned ap's and view statistics for each. It also includes a couple other tools to provide a complete toolset for making use of all 14 of the prism2 debug modes as well as do basic analysis of the hardware-based link-layer protocols provided by prism2's monitor debug mode.
Requirements
Currently bsd-airtools in a whole supports the following *bsd operating systems:
 NetBSD 1.5.1+
OpenBSD 2.9
OpenBSD 3.0
FreeBSD 4.4
Additionally, you will need a prism2 based card in order for dwepdump and prism2ctl to work:
Addtron AWP-100
Bromax Freeport
Compaq WL100
D-Link DWL-650
GemTek (Taiwan) WL-211
Linksys WPC11
Samsung SWL2000-N
SMC 2632W
Z-Com XI300
Zoom Telephonics ZoomAir 4100
LeArtery Solutions SyncbyAir LN101
dstumbler currently supports both orinoco and prism2 chipsets (should technically work on any hermes based card under the wi driver). However, monitor mode support currently only works with prism2 based cards.
Tools
bsd-airtools currently consists of quite a few different tools, they have individual informational pages that can be viewed below:
dstumbler v1.0
dweputils v0.1
prism2ctl v0.1
prism2dump v0.01
*bsd source-mods v0.2
ChangeLog
NOTE: not all of the patches and/or code for bsd-airtools-v0.2 has been fully tested on all platforms, so please report bugs.
v0.2 - Added 40-bit detection support to dstumbler.
v0.2 - Added dweputils along with support for "Practical Exploitation of RC4 Weaknesses in WEP Environments" optimizations.
v0.2 - Added refresh and window resize support to dstumbler.
v0.2 - Added comment field and menu hiding to dstumbler.
v0.2-rc2 - Added scan mode support to dstumbler for netstumbler-like scanning.
v0.2-rc1 - Added monitor mode support to dstumbler to analyze connected nodes, detect adhoc networks, etc.
v0.1d - Fixed a problem with the freebsd driver mods (thanks to jay and don4r).
v0.1c - Addition of prism2dump for analysis of the hardware-level link-layer protocols of packets received while in prism2 debug mode and procframe mode.
v0.1c - Addition of prism2ctl for interacting with the various prism2 debug modes.
v0.1c - Additions to the source-mod patches for debug mode support for prism2 cards.
v0.1b - Fixes to the prism2 ap detection code, should work fine now.
v0.1b - ./configure script for dstumbler for better multi-platform support.
v0.1b - BSS mode for airsnort for better prism2 compatibility and so you don't get stray packets from other APs.
v0.1b - Better xterm curses refresh handling (thanks BasharTeg).
v0.1a - Minor fixes with dstumbler command line argument handling.
v0.1a - Fixed dstumbler autoselect functionality.
v0.1a - Fixed dstumbler freebsd compilation problems.
Reviews & Publicity
Matt Peterson's Review of dstumbler
Got Wi-Fi? Watch out (Alan Clegg uses bsd-airtools for his 802.11 Mapping Project)
Whitepapers
Practical Exploitation of RC4 Weaknesses in WEP Environments
802.11b Wireless Security Presentation (Presented at SDRIW on 3.18.02)
BAT Around the World
802.11b Access Points In and Around the Research Triangle Park, NC
Wireless Link Project in Limerick, Ireland
Download
Use one of the links to download bsd-airtools from our site or one of our mirrors.
bsd-airtools v0.2 @ dachb0den.com
bsd-airtools
MD5: f4e4378d4bb831e83650ae0c81039e18
AnonCVS
If you would like to obtain the bleeding edge version of bsd-airtools you may now use anoncvs to obtain it (much thanks to don4r).
Web CVS
$ export CVSROOT=:pserver::/cvs
$ cvs login
(Logging in to )
CVS password: anoncvs
$ cvs co -rbsd_airtools_0_2 bsd-airtools
Donations
If you use bsd-airtools, please help the project. The suggested donation is $10-$20, but any little bit helps. Donations go towards getting additional hardware to increase support in the various tools, and also makes sure we have food to eat and coffee to drink :-). To donate, please visit the contributions page.
contributions page
Mailing List
Thanks to insane, we now have a mailing list setup for general discussion of the bsd-airtools package. If you use the tools or just want to discuss technical issues with wireless networking and releated software/hardware drivers and api's, please join the list and help contribute to the research and development.
the BAT mailing list
Support
If you are having trouble getting bsd-airtools to work, please first check the BAT mailing list archives. If you are unable to find an answer there, then please post your question to the mailing list. If you email me directly with support questions, your message will be forwarded to the list, so please help me out :-).
the BAT mailing list
Success Stories
If you're using bsd-airtools at work, for a project, or just taking down fortune 500 corporations, I'd like to hear about it! Please send me information about how you're applying bsd-airtools to your every day life (pictures are awesome too). Also, let me know if you mind having your stories published on the website.
|
|
