-snip- WKNOCK 0.1 alpha "Knock, knock" "Who's there?" Wireless Port Knocking + Proof of Concept + Jon Baer ([EMAIL PROTECTED])
What is wknock?
Wknock is a port knocking scheme for wireless networks. A daemon listens for a sequence in monitor mode and when the right sequence is established it will place itself into master mode and act as the AP. Once the disassociation occurs or the session (DHCP) has timed out, the link is closed and must be established with a new knock sequence.
This is a proof of concept and is not intended to be used in a production environment or even deployed. It is just an idea I had when reading about portknocking for TCP/UDP sequences and thought it could be also used for 802.11 management.
It allows you to "hide" an AP which broadcasts no beacons or probe
responses until the correct packet sequence is heard by the AP.
Usage:
On the AP:
wknockd -c wknockd.conf
On the client STA:
wknock -essid [essid] (or -bssid [mac]) (-f binary file) (-s hex sequence)
This currently only works with HostAP drivers on Linux.
For more info on port knocking in general see http://www.portknocking.org
This primary testbed for this project was a Thinkpad T20 running RedHat 9 with HostAP drivers and a WRT54G access point. -snip-
-- NYCwireless - http://www.nycwireless.net/ Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/ Archives: http://lists.nycwireless.net/pipermail/nycwireless/
