Jump to content

Kismet (software)

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by 221.47.185.5 (talk) at 10:18, 20 November 2010. The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Kismet
Developer(s)Mike Kershaw (dragorn)
Stable release
Kismet-2010-07-R1 / July 13, 2010 (2010-07-13)
Repository
Written inC++
Operating systemCross-platform
TypePacket Sniffer
LicenseGPL
Websitehttp://www.kismetwireless.net/

Kismet is a network detector, packet sniffer, and intrusion detection system for 802.11 wireless LANs. Kismet will work with any wireless card which supports raw monitoring mode, and can sniff 802.11a, 802.11b, 802.11g, and 802.11n traffic. The program runs under Linux, FreeBSD, NetBSD, OpenBSD, and Mac OS X. The client can also run on Microsoft Windows, although, aside from external drones[clarification needed], there's only one supported wireless hardware available as packet source.

Distributed under the GNU General Public License,[1] Kismet is free software.

Features

Kismet is unlike most other wireless network detectors in that it works passively. This means that without sending any loggable packets, it is able to detect the presence of both wireless access points and wireless clients, and associate them with each other.

An explanation of the headings displayed in Kismet.

Kismet also includes basic wireless IDS features such as detecting active wireless sniffing programs including NetStumbler, as well as a number of wireless network attacks.

Kismet has the ability to log all sniffed packets and save them in a tcpdump/Wireshark or Airsnort compatible fileformat. Kismet also captures PPI headers.

Kismet also has the ability to detect default or "not configured" networks, probe requests, and determine what levels of wireless encryptions is used on a given access point.

To find as many networks as possible, kismet supports channelhopping. This means that it constantly changes from channel to channel non-sequentially, in a user-defined sequence with a default value that leaves big holes between channels (for example 1-6-11-2-7-12-3-8-13-4-9-14-5-10). The advantage with this method is that it will capture more packets because adjacent channels overlap.

Kismet also supports logging of the geographical coordinates of the network if the input from a GPS receiver is additionally available.

Server / Drone / Client infrastructure

Kismet has three separate parts. A drone can be used to collect packets, and then pass them on to a server for interpretation. A server can either be used in conjunction with a drone, or on its own, interpreting packet data, and extrapolating wireless information, and organizing it. The client communicates with the server and displays the information the server collects.

Plugins

With the updating of Kismet to -ng, Kismet now supports a wide variety of scanning plugins including Digital Enhanced Cordless Telecommunications, Bluetooth, and others.

See also

References

  1. ^ "Kismet Readme". kismetwireless.net. Retrieved 2008-02-22.
Retrieved from "https://en.wikipedia.org/w/index.php?title=Kismet_(software)&oldid=397839787"