Kismet Wireless

Kismet Forums


Posted by:laserpad
Subject:exporting alerts
Date:17:56:46 27/11/2011

Is there any more documentation on incorporating Kismet with an IDS as seen here:

Kismet can integrate with other tools using the tun/tap export to
provide a virtual network interface of wireless traffic; tools such as
Packet-o-Matic and Snort can use this exported data to perform
additional IDS functions.

I tried having snort listen on the kistap0 virtual interface and when Kismet started generating alerts for my attacks, snort did nothing, so I tried changing Kismet's alert output into snorts log directory so it would process Kismet's alert output (and alert me, which is my final goal), but it just froze snort (log file incompatibility maybe?) Don't know where to go from here.

Reply to this message