Formation certifiante - 22 au 25 février 2011
mardi 22 février 2011
CASABLANCA - international
Part 1: Why Audit Wireless Networks?
The Need for Wireless Auditing
The Law of the Land
Legal & Best Practice compliance
Introducing the 5E Attacker Methodology
5E: Exploration
5E: Enumeration
5E: Exploitation
5E: Embedding
5E: Egress
Part 2: Radio Frequency (RF) Fundamentals
The Concept of RF
Wavelength
Resonance
Calculating Frequency Wavelengths
Gain
Power and Distance
Attenuation
Diffraction
Interference
RF Spectrum Analysis
Understanding the Wireless Footprint :
ThinkSECURE's MAX-SOIL & SR-SOIL Concepts
Workbook Lab Exercises
Part 3: Wireless 101
Wireless Standards
Bluetooth Security
Bluetooth: Attacks
Bluetooth: Threats to Companies and Individuals
Bluetooth: Defences
RFID
RFID: History
RFID: Privacy Issues
RFID: Architecture
RFID: Tag Characteristics
RFID: Use Cateogories & Legislation
RFID: Information Theft & Enumeration
RFID: Deployer Security Measures
RFID: Carrier Security Measures
802.11: Wireless Equipment
802.11: Wireless Chipsets
802.11: Selecting Wireless Chipsets
802.11: Master, Monitor & Frame-Injection
802.11 Accessories: Antennae
802.11 Accessories: Detection Tools
802.11 Frame Architecture
802.11 Frame Analysis
Locking Down the Auditing Station
Tool Selection
The OSWA™-Assistant Auditing Toolkit
Workbook Lab Exercises
Part 4: Wireless Security Testing: Infrastructure
Wireless Sniffing
Understanding 802.11i : WEP, WPA-PSK &
WPA/WPA2
WEP Analysis
Auditing WEP
WPA/WPA2 & WPA-PSK/WPA2-PSK Analysis
The 4-Way Handshake
WPA Authentication Schema
Auditing WPA/WPA2 & WPA2/WPA2-PSK
802.11-based Denial of Service
Workbook Lab Exercises
Part 5: Wireless Security Testing: Client
Auditing the Wireless Client
Discovering Wireless Clients
Client Probing
Probemapper™
Mass Client Profiling
Targeted Client Profiling
Client Targeting
The WCCD Vulnerability
Workbook Lab Exercises
Part 6: Testing with a Twist
Ph00ling
Why is Ph00ling possible?
Ph00ling Technique
Long Range Auditing
Build Your Own Hardware: Cantennas
Cantenna: Components
Cantenna: Assembly
Cantenna: Optimization
Cantenna: Benchmark Performance & Range Testing
Build Your Own Hardware: NIC Jacks
NIC Jack Construction & Assembly
MoocherHunter™: Introduction to Real Time Geo-
Location of Hackers & Moochers
MoocherHunter™: Preparation
MoocherHunter™: Technique & Execution
Concluding the Audit
Workbook Lab Exercises
Methodologies & Tools:
The following are just some of the Methodologies & Tools
introduced during the OSWA™ programme:
 5E Attacker Methodology
 MAX-SOIL / SR-SOIL
 OSWA-Assistant™ Wireless Auditing Software Toolkit
 Wireshark / Ethereal
 Kismet
 Airodump-ng / Aireplay-ng / Packetforge-ng
 Aircrack-ng / Aircrack-ptw
 CoWPAtty
 Probemapper™
 MDK3
 MoocherHunter™
 RF Spectrum Analyzer
 WiFi Finder
 Digital Hotspotter
 Yagi, Parabolics & Cantennas
 Rfdump
 Bluetooth hacking tools
...and much more!
Plaquette Formation [.pdf]
