CCNP IAUWS by William G. Daniel is available on Safari Online!

You can own the entire book for only 3 tokens! Great cost savings... This is a great reference book and I highly recommend it if you are going for certifications or if you are deploying a WLC.

Chapter 1. Describing Regulatory Compliance

Identifying Wireless Vulnerabilities

Industry Standards and Associations

Regulatory Compliance

Segmenting Traffic

Configuring Administrative Security

Configuring the Cisco Secure ACS for RADIUS

Authenticating Management Users on TACACS+

Configuring the Cisco Secure ACS for TACACS+

Management via Wireless

Configuring Credentials for APs

Managing WLAN Controller and Cisco WCS Alarms

Configuring WCS Logging and Message Notification

Identifying Security Audit Tools

Cisco Spectrum Expert

WCS Security Reports

PCI DSS Compliance Report

Cisco Security MARS

Chapter 2. Secure Client Devices

Configuring EAP Authentication

Understanding the Impact of Security on Application and Client Roaming

Configuring Cisco Secure Services Client (SSC)

Troubleshooting Wireless Connectivity

Chapter 3. Design and Implement Guest Access Services

Understanding Guest Access Architecture

Firewall Rules and DHCP

Configuring Foreign and Anchor Controllers

Configuring Guest Access Accounts

Troubleshooting Guest Access

Chapter 4. Design and Integrate a Wireless Network with Cisco NAC Appliance Server

Introducing the Cisco NAC Appliance Server

Configuring the Controller for Cisco NAC Out-of-Band Operations

Chapter 5. Implement Secure Wireless Connectivity Services

Configuring Authentication for the WLAN Infrastructure

Configuring Management Frame Protection

Configuring Certificate Services

Implementing Access Control Lists

Implementing Identity-Based Networking

Troubleshooting Secure Wireless Connectivity

Troubleshooting Issues Using External Tools

Chapter 6. Internal and Integrated External Security Mitigations

Mitigating Wireless Vulnerabilities

Understanding the Cisco End-to-End Security Solutions

Integrating Cisco WCS with Wireless IPS

Jerome Henry's CCNP IUWMS is available on Safari Online!

You can own the entire book for only 3 tokens! Great cost savings... This is a great reference book and I highly recommend it if you are going for certifications or if you are deploying a WLC.

Chapter 1. Implement Location-Based Services

I completed my read of the "CCIE Cisco Certified Internetwork Expert Wireless Certification Exam Preparation Course in a Book for Passing the CCIE Exam" by William Manning

I'm surfing Amazon looking for a good read for my iPad. I stumble across this book. So, I shot a few emails to some colleagues of mine if anyone read this or knew about it before I purchased it. There weren't any reviews on Amazon for this title either. So what the heck for $16.00 let me give it a spin!

At first impression you aren't sure if this is a study guide for the lab or written or both. It turns the book is geared towards the Cisco CCIE Wireless written exam. The content itself is a mile high and a inch thick. By this I mean it covers broad topics and doesn't go into great great  detail. That's not a bad thing. Just know what to expect. 

If you are preparing for your Cisco CCIE Wireless written you may find this of interest as refresher material. Keep in mind this is NOT your 'offical' everything you need to pass guide. But rather a quick review of objectives you will find on the exam. 

Is it worth the $16.00... yea, but I wouldn't spend a penny more!

Robin Wood (DigiNinja) and Darren Kitchen (Hak5) collaborate on the newest Pineapple release called the WiFi Pineapple Version 2. It is running Jasger --In German it means "The Yes Man".

So what is a Pineapple you ask?

Think of a wireless router that detects probe request from clients and this wireless router responds to these probe request with a probe response allowing ALMOST anyone to attach. I see the wheels turning, right ... cool stuff but there is more!

Robin wood the author of Jasger which is installed on the Pineapple includes the linux program called "Karma". Karma is a web front end that allows you to direct traffic and allows you control of the web content.

So in short, think of man in the middle attack where people attach to you and you can filter and control their traffic and SO MUCH MORE. 

You can purchase one already pre-built for $109. 

http://www.hak5.org/store/wifi-pineapple-version-2

Leeched: http://www.digininja.org/jasager/ 

Jasager

Welcome to Jasager - Karma on the Fon.

Jasager is an implementation of Karma designed to run on OpenWrt on the Fon. It will probably run on most APs with Atheros wifi cards but it was designed with the Fon in mind as it is a nice small AP which gives it a lot of scope for use in penetration tests and other related fun.

A quick highlight of features:

• Web interface showing currently connected clients with their MAC address, IP address (if assigned) and the SSID they associated with
• The web interface allows control of all Karma features and can either run fully featured through AJAX enabled browsers or just as well through lynx
• Auto-run scripts on both association and IP assignment
• Full logging for later review
• Pluggable module system for easy extensibility
• Basic command line interface so you don't have to remember the different iwpriv commands

Please give your feedback, bug reports, comments, praise, etc either throughjasager@digininja.org or on the Hak5 forums.

To pre-empt the question of "Will this work on a laptop instead?", with some slight tweeking it should do but I haven't tested this for two reasons. First, from a security point of view, the web server needs to have some way to execute the iw and if commands. On the Fon everything runs as root by default so this doesn't really create any extra problems on top of what is already there but on a laptop it could be an issue. The second reason is because I have plans for a laptop version which will build on this and run in a much better way due to the extra processor/storage space.

I've recently worked with Orange from the Piranha project to integrate Jasager into his firmware. Together, but mostly Orange, we worked out how to make a Jasager Makefile so it could be built directly into the firmware and as a proper OpenWrt package rather than my original script which built the package with tar and gzip.

Uses

As with any tools, this tool can be used for good or bad. Here are some of the good uses:

• In your office - Set it up to capture laptops before the bad guys do. Use a website to remind them of the rules.
• On penetration tests - Lure in target clients to find a back door into networks
• At home - Have fun with neighbours who try to steal your wifi bandwidth 

Cisco released a new product line called Valet Wireless Hot Spot this week. This is marketing to home users. It has parental controls, managed guest access and allows for easy configuration. It is also delivering 2x2 N. 

I ordered one to do some testing. The ol' lady doesn't like to be on my LAB wireless anyway as I ticker with it to much.  I'll post my evaluation once I'm done. Here is the specs:

There are (2) Models the Valet and Valet PLUS.

http://home.cisco.com/en-us/wireless/valet/

This is the first virtual Stumber of it's kind and you don’t have to be connected to the internet for it to work either (FireFox ONLY!). I had a friend call me this evening with a wireless issue and he didn’t have a wifi scanner installed. This is the next best thing! NO APPS OR DRIVERS TO INSTALL!

This virtual stumbler fits the bill for residential and hobbyist wireless users alike! And the price, its right, FREE! So how does it work you ask? Simply visit http://tools.meraki.com/stumbler and it will use your existing wireless card to scan the environment. No applications or drivers to install -- at all "SWEEEEET".

Q: What is the WiFi Stumbler?

A: The WiFi Stumbler is a browser-based wireless scanner tool that detects 802.11 wireless networks and displays useful information about the networks in an easily searchable, intuitive web interface. WiFi Stumbler can be used to optimize wireless network coverage, troubleshoot performance issues, detect rogue APs and perform basic pre-deployment site surveys.

Q: Can I use WiFI Stumbler when I am not connected to the Internet?

A: If your browser supports offline mode (currently only Firefox), then it can load WiFi Stumbler from its offline cache. This means that WiFi Stumbler will work in these browsers even when you are not connected to the Internet, as long as your wireless card is enabled. Simply visit the Stumbler page using Firefox once you are connected to the Internet. The site will ask for permission to use offline storage. Grant this permission, bookmark the page and you can revisit whenever you need to use WiFi Stumbler.

Q: How does the WiFi Stumbler work?

A: WiFi Stumbler captures data about nearby wireless networks from your computer's wireless card and displays it as a web page. It can even work when you are not connected to the Internet if your browser supports offline mode (currently Firefox only).

Q: Why is Stumbler a web-based tool instead of standalone, downloadable software?

A: By running in a browser, there is no need to download software to your computer. This makes it very easy to load and use since no software installation is required. It also can run on either a PC or Mac, unlike most downloadable software applications. In addition, as we will be continually adding new features to Stumbler, you will automatically get the latest version of the tool each time you reload the page.

Q: The WiFi Stumbler doesn't load on my computer/in my browser. Why not?

A: WiFi Stumbler requires Java support and does not currently support Linux. If your browser does not support Java or you are running Linux and you try to load WiFi Stumbler, you will receive an error message in your browser window. Currently, Google Chrome for Mac does not support Java so it will not run WiFi Stumbler. WiFi Stumbler is also currently a beta stage tool; if you encounter other problems getting Stumbler to load, please let us know using the Make a Wish box at the bottom of the page.

Q: Why do some networks appear in gray and others are in dark gray?

A: Networks appearing in light gray were not detected in the latest scan but were detected recently. The last time a network was detected by Stumbler will appear under the "Last Seen" column. If an access point stops broadcasting its SSID (eg. it was unplugged) or local RF interference or environmental obstructions prevent broadcast beacons from reaching your client then the network might "disappear" for a few seconds, in which case it would turn light gray until it is picked up in another scan.

Q: Why don't all of my network broadcast SSIDs appear in the Network List?

A: If an SSID is broadcasting in 5 GHz only and the wireless card in the client on which you are running Stumbler on does not support 5 GHz then the SSID will not appear in the Network List.

Q: What does "Hidden" mean under BSSID name?

A: If a network owner has disabled SSID broadcasting on their network, then the SSID is now "hidden". What that means is that the SSID name is no longer included in the the periodic broadcast beacons from the access point that alert local clients to the network. This is sometimes done as a security measure, as only clients that know the name of the network (or who use "sniffer" software programs) can associate to the network.

Q: Why does the same SSID appear twice with different MAC addresses?

A: If there are multiple access points in a network all broadcasting the same SSID, each AP will appear individually in WiFi Stumbler showing the same SSID. Also, if an access point contains multiple radios that are broadcasting the same SSID, each radio will appear individually in the WiFi Stumbler network list.

http://tools.meraki.com/stumbler

The new Certified Wireless Security Professional Official Study Guide was released today! If you are looking to brush up on your 802.11 skill set or perhaps you want to pursue the CWSP certification this read is a MUST HAVE in your arsenal of reading!! 

The CWSP PW0-204 is authored by: David D. Coleman (Author), David A. Westcott (Author), Bryan E. Harkins (Author), Shawn M. Jackman (Author). This is an author list of who is who in 802.11 and sure not to disappoint. 

I've had the pleasure to work with Shawn Jackman. You wouldn't find a better teacher, mentor and 802.11 expert in the industry today! 

If you've been under a rock or locked at the office then you may have missed the new Spectrum announcment offering from Airmagnet / Fluke. Its called the SpectrumXT.  I've always said, "An engineer without a spectrum card, is a carpenter without his hammer" - George Stefanick

Spectrum cards are $$$ and are often out of reach of some folks. AirMagnet made an early attempt with the Intel 5300 spectrum offering. I wasn't really a big fan of this offering, but customers who had a price point seen this as an attractive alternative to the higher price Cisco / Cognio offering. 

Interesting product by IKEA. I like it ... If your a geek like me and need to make a fashion statement or maybe you are looking for an inexpensive rack solution here it is -- LACKRack. Ill be checking out my local IKEA next week to see what the LACKRack has in store for me...

Looking to build a home data center? Look no further than you local IKEA store. Computer hobbyists are adapting the Swedish furniture chain’s LACK side table to house servers and switches, creating a LACKRack. It turns out that the space between the table’s legs is 19 inches, the same width as a

 standard slot in a data center server rack.

Looking to build a home data center?

Look no further than you local IKEA store. Computer hobbyists are adapting the Swedish furniture chain’s LACK side table to house servers and switches, creating a LACKRack. It turns out that the space between the table’s legs is 19 inches, the same width as a standard slot in a data center server rack.

The LACKRack was first displayed at the eth0 Winter 2010 computer conference last weekend in Wieringerwerf, the Netherlands. The eth0 team has posted a guide to building your own unit by using wood screws to affix server rack mounts to the legs of the table. The tables are stackable and modular, so can be assembled in a variety of configurations.

There’s also the LACKRack “Enterprise Edition,” which uses a longer LACK coffee table – and as  with any enterprise product, has a premium price as a result. The eth0 site suggests that Google engineers may have been the first to affix gear to LACK tables.

Has anyone heard about this new device that charges battery's from WiFi signals? I am really interested to hear how this works? If this is indeed real, this takes the prize for best technology innovation of the decade in my book..  Check it out, what do you think..

We don't usually associate RCA with new and innovative technologies, but we think know they're on to something with its Airnergy power system, which harvests energy from WiFi signals. Shipping this summer, the pocketable dongle picks up WiFi signals from the air and manages to charge an internal battery through some magic inside. You don't have to connect to a network, you just have to be in a place that has signal, and it will automatically charge up. As if we weren't intrigued already, they told us that they're planning on building the tech into actual cellphone batteries, so you would theoretically never need to plug in again and your device would always be topped off. Yeah, we want.

We don't usually associate RCA with new and innovative technologies, but we think know they're on to something with its Airnergy power system, which harvests energy from WiFi signals. Shipping this summer, the pocketable dongle picks up WiFi signals from the air and manages to charge an internal battery through some magic inside. You don't have to connect to a network, you just have to be in a place that has signal, and it will automatically charge up. As if we weren't intrigued already, they told us that they're planning on building the tech into actual cellphone batteries, so you would theoretically never need to plug in again and your device would always be topped off. Yeah, we want.

Here is the video link: http://www.viddler.com/explore/engadget/videos/1001/ 

Leeched: http://www.engadget.com 

Once the issues are ironed out, this could be a handy tool in the hands of a hacker. I may just have to jailbreak my iPhone.

Pirni is the worlds first native network sniffer for iPhone. The iPhone's Wi-Fi has some major drawbacks in its hardware design, thus we can not properly set the device in promiscuous mode.

This is why Pirni comes with an ARP spoofer that successfully routes all the network traffic through your device and then uses packet forwarding to send it to it's normal recipient (ie. the router).

After a successful network sniffing, you can transfer the dumpfile to your computer and open it up with Wireshark (or any other traffic analyzer that supports pcap) to analyze the traffic.

BPF filters allow you to select which packets to be dumped. This allows you to "filter" packets, so that only "interesting" packets can be supplied to the software using BPF; this can avoid copying "uninteresting" packets from the operating system kernel to software running in user mode, reducing the CPU requirement to capture packets and the buffer space required to avoid dropping packets.

leeched from: www.net-security.org

I stumbled across an interesting IPhone app called dot11wavelength by The Perseus Group @ www.wirelessfabric.com. This app displays the on channel frequencies for the different 802.11a (5GHz) and 802.11g (2.4GHz) channels.

This app is helpful if you need the exact frequency for a channel in the field or if you are studying for your CWNA exam. They just updated the APP to include other country channel frequencies (JP,ES,IT, DE and FR).

I tried a few of the IPhone WiFi scanners, nothing to write home to mom about. Until I tried WiFiFoFum scanner. It reminds me of Netstumber from back in the day, but with the GPS option. This scanner not only scans for WiFi networks, but it also records the location via GPS for later review. It records the data in a KML file that you can email yourself and drop into google maps or review right from your IPhone.

There are 4 radio buttons:

Networks - This button displays the basics ~ SSID, mac address, RSSI, data rates and if the network is secure.

Radar - Pretty useless. It gives you a visual of how close you are. If you are in the crosshairs you are on the money.

Logging - The logging function is pretty cool. When you enable logging it will record your position when your IPhone heard the access point. Once you stop the logging it records your data in a file with the date and time. You click on that file and a google map pops up showing you the access points it found. You can also send yourself the file, its in a KML file.

Settings - The last button is the settings button. All the basic here, scan rate, RSSI filter, etc.

The name is a bit misleading, it not a switch really, well kind of, but not the switch you are thinking of. I was looking for an inexpensive power management solution to control the various components in the lab. Electric is pretty expensive here in Houston and having a rack full of equipment doing nothing when not is use is just a waste of money. I looked at other remote power solutions but price was a hugh factor in my decision making process. I discovered remote power management isn’t cheap! I saw solutions in the hundreds and even in the thousand dollar range.  I also didn’t want to compromise reliability and usability either over a cheap solution.

After much surfing, reading and research I decided on Digital Loggers (www.webpowerswitch.com) Web Power Switch II. I have to say, it’s not the prettiest thing and it’s not rack mountable 1u form.  They do sell a rack mount kit but I didn’t purchase it, it just didn’t look right. Outside of those two draw backs I am really pleased with the performance for the price. For starters it was only $135.00 with shipping.  My order shipped the next day after placing the order. The plug is a 15 amp connector and comes with 8 ports that allow for remote management and 2 additional power ports that are "unswitched" or unmanaged.

The web interface is pretty basic. You can configure and name each outlet for easier identification when managing what devices you want to turn on or off. Comes with a basic syslog which reports the status of the power switch and any changes. Get this, it has an auto ping feature that will automatically power reset an outlet if it loses connectivity with a device. Outside of it being an ugly duckling I'm more then satisfied

I admit I'm an IPhone app junky. I surf iTunes daily for my next fix. I gave the new Cisco SIO IPhone app a spin today. SIO stands for "Security Information On-the-Go" If you are a security professional or someone who keeps up with latest alerts this is an app you would want to consider. As for me i like the security blog and Cisco field notices of the app.

Cisco SIO To Go iPhone Features

Powered by the Cisco Security IntelliShield Alert Manager Service, the Cisco SIO To Go iPhone application informs, protects and enables users to respond in real time to alerts and threats to the network. The application delivers early warning intelligence, threat vulnerability and proven Cisco mitigation solutions to users' iPhones as they occur. It also provides unique IP and URL address e-mail and Web reputation look-up powered by the Cisco IronPort® SenderBase Security Network and the Cisco SIO.

Alerts delivered include:

Cisco Product Security Incident Response Team (PSIRT) Alerts

Cisco Intrusion Prevention Systems (IPS) Signatures

Cisco Applied Mitigation Bulletins

Cisco Threat Outbreak Alerts

And many others

Links to the following Cisco security news and information:

Cisco Security Blog

Cisco Cyber Risk Report

Cisco Press Releases

Cisco Security Twitter Feed

Cisco Security Podcasts

Recently I was introduced to Dropbox file sharing. I am that shiny object kind of guy and dropped what I was doing to investigate Dropbox (Thanks Brandon, lol). First, I found the ease of uploading and file management so much better than other file share apps. I was also impressed with how easy it is to share public files and how to manage those files or folders. The kicker and deal closer for me, yup the IPhone app just drove this out of the park. You can d/l the Dropbox app and you have full access to ALL your files and better yet, from the Dropbox IPhone app you can share and invite others to share your folders. So if you’re a busy engineer or just a file freak  in general this app is for you. I see myself migrating to this more then my FTP.

Dropbox give you 2 gig free. You can purchase 50 gig @ $10 a month and 100 gig @ $20 a month. Well worth the investment!

www.dropbox.com

I can’t tell you how much time I devote to study. The hours are countless and the nights are long. If you are in the technology field you know my pain. I needed to find a way to maximize my study efforts and more importantly repetition of the details so that I would have them ingrained into my brain.

I was recently introduced to a Mental Case (http://www.maccoremac.com/http://www.maccoremac.com ), no no it’s not your girlfriends ex-husband or some stalker girl you dated, it’s a software program that runs on your IPOD Touch or IPhone.

Mental Case allows you download customizable flash decks from Flash Card Exchange, (http://www.flashcardexchange.com/). There are thousands of slide decks currently being shared on Flash Card Exchange. What is really cool, for a small fee you can create your own Flash Decks which you can download to your POD. You can also share your deck with the world if you like.

Currently, there is a pretty wide selection of Cisco and some CWNP decks available. But again, create your own decks and study exactly what you need to! I would also warn you if you choose to use someone else’s flash deck make sure there answers are correct! LOL

 Coming March 2009!