Wireshark is the wrong tool for this need – I would start
with AirMagnet or AirDefense’s products.
Frank
From:
wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx]
On Behalf Of Lockhart, Stephen
Sent: Thursday, April 09, 2009 3:17 PM
To: wireshark-users@xxxxxxxxxxxxx
Subject: [Wireshark-users] Wireshark Audit Guide
Does anyone know where I can find an audit guide telling how
to use wireshark to do an audit of a wireless network? We are
interested in areas like what information we should be looking for in packets
that is of a security nature and how filter for that information. For
example, can we filter for passwords on unencrypted messages. We’re
not interested in injecting packets or cracking WEP or things like
that…but just queries of packets for information that could adversely
affect security. Thanks.
Steve Lockhart CIA,
CISA
Information
Systems Auditor
Office of Inspector General
U. S. House of Representatives
386 Ford House Office Building
Washington, DC 20515-9990
Phone (202) 225-1137
Fax (202) 225-4240
