IT security professionals often work on large campuses with many networks and endpoints. It's not always easy to keep tabs on every network, especially Wi-Fi networks that can come and go frequently. This opens up opportunities for attacks such as evil twin attacks, where an attacker creates a network with a name similar to that of a trusted network, but leaves it unsecured. Unsuspecting users log onto its unprotected connections, and suddenly all of their data is vulnerable. There ought to be a way for security professionals to track all the available access points and see details about them in order to try to prevent these and other types of leaks. The free network monitoring tool Kismet can help.
In this SearchSecurity screencast, Keith Barker, a Certified Information Systems Security Professional, or CISSP, and trainer for CBT Nuggets LLC, demonstrates how to use Kismet, a wireless network detector, sniffer and intrusion-detection system. Kismet allows a user to see a list of existing networks and details about each one. This information is helpful for identifying unauthorized or hidden wireless networks that are potentially malicious.
Kismet is a utility that can be placed on the network passively, meaning that a security team can look at data immediately, should the need arise. Another great feature of Kismet is that it can connect via Bluetooth to a computer or smartphone with a GPS, and show the location of each detected network. This is especially useful on campuses where there might be unauthorized wireless networks, because security teams can see exactly where the network comes from. With Kismet, incident response teams get a free, lightweight tool that can help identify potentially harmful access points in a more effective way.
About CBT Nuggets
CBT Nuggets creates cutting-edge online IT training in topics including network security, server administration and more. Train 24/7 from any device. Try CBT Nuggets with a seven-day free trial and train on a variety of topics, including Cisco security, Wireshark, Linux and more! Watch. Learn. Conquer.
About Keith Barker
Keith Barker, CISSP, is a trainer for CBT Nuggets and has more than 27 years of IT experience. He is a double CCIE and has been named a Cisco Designated VIP. Barker is also the author of numerous Cisco Press books and articles.