If you can’t justify spending $18.99 on the book I co-authored Hacking Wireless Networks For Dummies, then there’s an alternative resource for you to at least be able learn about how WEP and WPA can be exploited. In this recent SearchNetworking.com tip, Lisa Phifer has taken the volumes and volumes of technical jabber about the known attacks against WEP and WPA and distilled them into a simple 5 minute read. Definitely worth checking out.
After reading it though, I thought….man, all of these technical details, all of these attacks, all of this effort to lock down wireless. With all due respect to the people who figured all of this stuff out, I still think it’s pretty naive to focus a lot of security effort on this when there’s so much other silly/simple/stupid stuff that needs to be fixed I’ve seen recently like:
So stop focusing on the details and fix the obvious stuff first. And you can’t assume everything’s OK. You’ll never know where you’re vulnerable and where things stand unless and until you test your systems and your processes. Period.
Can you tell I’m passionate about this stuff? I could go on and on and on….but I won’t.
“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.
His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”