Kismet Wireless

Kismet Forums


Posted by:dragorn
Subject:detecting attackers using alert files
Date:17:47:55 03/03/2012

> Also in case of CHANCHANGE, APSPOOF and CRYPTODROP how do we find out who has carried out the change in channel of AP or remove the Security key?

You don't - it's an impersonation attack. The whole point is that the attacker is impersonating a legitimate AP. There is no way to tell who, because there IS no "who", there is only suspicious behavior.

Reply to this message