Over the last couple of days, we have been experimenting with War Linux 0.5. It's a portable "version" of Linux that was built to scan for Wireless APs. All you do is pop the CD in and boot up your laptop with prism2 compatible wireless card. There is no software to install since it runs completely from the CD. The command you use to get it running is ./prismsniff. It will pick up the SSID (if broadcasted) and the channel along with some other information I haven't quite figured out yet. I picked up about 4 WAPs while walking around my building today. The signal was so weak that it had to be neighboring buildings. The link is below.


War Linux

This is one of the many good tools available that can be used to detect rogue APs on your company's premises. All someone has to do is bring one in and plug it into a spare network jack. Once configured, it could allow someone to jump right onto your network without you even knowing it from outside of your building.


t2k2