Kismet Download – Wireless Network Hacking, Sniffing & Monitoring

The New Acunetix V12 Engine


Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. It will work with any wireless card which supports raw monitoring (rfmon) mode and can sniff 802.11b, 802.11a, and 802.11g traffic.

Kismet Download - Wireless Network Hacking, Sniffing & Monitoring


What is Kismet?

Kismet differs from other wireless network detectors in working passively. Namely, without sending any loggable packets, it is able to detect the presence of both wireless access points and wireless clients and to associate them with each other. It is also the most widely used and up to date open source wireless monitoring tool.

It also includes basic wireless IDS features such as detecting active wireless sniffing programs including NetStumbler, as well as a number of wireless network attacks and sports a plugin architecture allowing for additional non-802.11 protocols to be decoded.

Kismet Features

  • 802.11 sniffing
  • Standard PCAP logging (compatible with Wireshark, TCPDump, etc)
  • Client/Server modular architecture
  • Plug-in architecture to expand core features
  • Multiple capture source support
  • Live export of packets to other tools via tun/tap virtual interfaces
  • Distributed remote sniffing via light-weight remote capture
  • XML output for integration with other tools

In order to find as many networks as possible, it supports channel hopping. This means that it constantly changes from channel to channel non-sequentially, in a user-defined sequence with a default value that leaves big holes between channels (for example, 1-6-11-2-7-12-3-8-13-4-9-14-5-10). The advantage of this method is that it will capture more packets because adjacent channels overlap.

There are more Wireless Hacking tools here.

You can download Kismet latest version here:

kismet.tar.gz

Or read more here.

Posted in: Hacking Tools, Wireless Hacking

, , , ,


Latest Posts:


Eraser - Windows Secure Erase Hard Drive Wiper Eraser – Windows Secure Erase Hard Drive Wiper
Eraser is a hard drive wiper for Windows which allows you to run a secure erase and completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns.
Insecure software versions are a problem Web Security Stats Show XSS & Outdated Software Are Major Problems
Netsparker just published some anonymized Web Security Stats about the security vulnerabilities their online solution identified on their users’ web applications and web services during the last 3 years.
CTFR - Abuse Certificate Transparency Logs For HTTPS Subdomains CTFR – Abuse Certificate Transparency Logs For HTTPS Subdomains
CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds.
testssl.sh - Test SSL Security Including Ciphers, Protocols & Detect Flaws testssl.sh – Test SSL Security Including Ciphers, Protocols & Detect Flaws
testssl.sh is a free command line tool to test SSL security, it checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
Four Year Old libSSH Bug Leaves Servers Wide Open Four Year Old libssh Bug Leaves Servers Wide Open
A fairly serious 4-year old libssh bug has left servers vulnerable to remote compromise, fortunately, the attack surface isn't that big as neither OpenSSH or the GitHub implementation are affected.
CHIPSEC - Platform Security Assessment Framework CHIPSEC – Platform Security Assessment Framework For Firmware Hacking
CHIPSEC is a platform security assessment framework for PCs including hardware, system firmware (BIOS/UEFI), and platform components for firmware hacking.


20 Responses to Kismet Download – Wireless Network Hacking, Sniffing & Monitoring

  1. Goodpeople February 6, 2008 at 12:09 pm #

    Personally I am an aircrack-ng kinda guy. But that is only if I want to break the encryption. Kismet is a very valueable tool for all other wireless related fun things you can think of.

  2. Benjamin Juang February 6, 2008 at 12:33 pm #

    And for those of us who are running MacOS X, there’s Kismac, the mac equivalent – I think we have almost everything Kismet has? (Was initially a port of Kismet to MacOS X, I think..? I may be wrong, don’t quote me on that.)

    Am wondering though – has anyone tried it on windows? Or have a similar tool for windows?

  3. Pantagruel February 6, 2008 at 3:03 pm #

    As with most *nix apps you can use Cygwin to run then under Windows

    (see http://www.kismetwireless.net/documentation.shtml)

    You could give NetStumbler a try when tied to the Windows platform

  4. DaCapn February 6, 2008 at 5:33 pm #

    To the best of my knowledge there is only one card that works with kismet under windows. The windows drivers from the manufacturers do not support rfmon. Similarly, this means you can’t use the windows drivers with ndiswrapper on a unix-based system.

  5. mumble February 6, 2008 at 8:18 pm #

    @pantagruel – the problem is RFMON support. There is only one card with decent RFMON support for Win32, and that one is a specialty device for the wireless security market, and is expen$ive.

    Right now, RFMON/packet injection tools are somewhat mature and capable for the free *nix operating systems, not bad for OSX, and pretty much worthless elsewhere. In fact, at this point – unless you like getting very intimate with the details of setting up kernel mode drivers, you’ll probably end up running something like Backtrack-3.

  6. Arkwin February 6, 2008 at 10:04 pm #

    http://www.oxid.it/
    Cain & Able

    http://www.netstumbler.com/
    Net Stumbler

  7. Emkayu February 7, 2008 at 1:56 am #

    If you’ve tried the OS X version of this, KisMac you will know how powerful and easy to use this is. Suppors reinjecting of packets, authentication floods, deauthenticating, and various cracking attacks (weak schedules, bruteforce and even wordlist attacks)

  8. Yoshi February 7, 2008 at 2:19 am #

    First time reader! Don’t get me me wrong I think Kismet is a great tool, however i think a lot of the times you actually need to have some pretty pictures when presenting a wireless assessment / investigation / etc to mangement IMHO – more so with wireless than any other area for some reason (I guess it’s because you can’t see it so it makes it harder to grasp the concepts). Some times you got to pay the bucks to get the professional / graphical reporting

    Nice blog! I’ll be back tomorrow to see the next post :)

  9. eM3rC February 7, 2008 at 9:12 am #

    Commenting on Emkayu’s comment, 60 Minutes (CBS I think?) did a story about Kismet. More specifically, how it could be used to tap into stores wireless routes and steal credit card information. According to the story those little credit card scanners are wireless (the cords are power I guess) and when you swipe the card it gets sent to a modem which in turn is sent to the bank for conformation. Hackers were taping into these WEP protected modems (2-3 minutes to break if your really good, 10 for a normal user) and took the info passing through it.

    I would say this is OSX’s aircrack-ng.

  10. Pantagruel February 7, 2008 at 6:41 pm #

    @Emkayu

    True, I recently bought me a Mac Mini and it was quite a pain to find a supported wireless network dongle (got one through Ebay). Haven’t spend too much time playing with it.

  11. Pantagruel February 7, 2008 at 7:04 pm #

    Just for fun, go to kismac.de , it nicely sums up some of the postings here on DarkNet

  12. Yoshi February 7, 2008 at 10:36 pm #

    Oddly enough i’m actually in Germany this week. I may be way out of line here, but I think Germany has lost a lot of the organisation ‘lets do it the right way’ , hard work ethic it was once famous for – but then they have the workers council which is just a world of pain to deal with. (I don’t actually know the reason, but i would guess that the german work law is soo difficult that’s why Walmart never made a profit till the day they pulled out of Germany)

    Obvisouly this is an outsiders view – German readers will have a far more informed opinion that little old me who visits on business every couple of months.

  13. eM3rC February 8, 2008 at 3:32 am #

    Good point pantagruel. Thanks for the link!

  14. DaCapn February 9, 2008 at 8:53 pm #

    Was my previous post deleted for some reason? I don’t see it here now…

    Netstumbler is a passive sniffer. Active sniffers like kismet are able to do things like discover APs that don’t broadcast their SSID.

  15. eM3rC February 9, 2008 at 9:04 pm #

    @DaCapn

    Good point. Although to get into a modem that doesn’t broadcast its SSID seems like more questionable cracking ;)

  16. eM3rC February 9, 2008 at 10:13 pm #

    Got a kind of random post here.

    For one of my classes I want to write a report on what exactly computer hacking is, what is happening with it today (groups, what they are doing, general modern hacker profile), and the history of it. As for material I have begun reading some books from the library (including Mitnick’s books).

    If anyone could recommend any more material it would be much appreciated.

  17. Pantagruel February 10, 2008 at 3:10 pm #

    For some real old skool stuff try:

    The cuckoo’s egg by Clifford Stoll

    An Evening with Berferd by Bill Cheswick

    More of this time:

    Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series) by Greg Hoglund and Jamie Butler

    Hacking: The Art of Exploitation, 2nd Edition by Jon Erickson

  18. eM3rC February 10, 2008 at 8:26 pm #

    Thanks a million Pantagruel!

    The world needs to know hackers aren’t always bad ;)

    If anyone else can recommend any material feel free to do so.

  19. Emkayu May 15, 2008 at 9:19 pm #

    theres a list of compatible dongles about, i personally use the Dlink DWL g122 on the RA-link build of kismac :D, can crack wep keys in local area under 10 minutes, link it with a GPS device and it’s great for wardriving with a macbook

  20. Lee February 3, 2009 at 10:55 pm #

    does anyone know if dell wireless 1390 wlan mini-card support the raw monitoring (rfmon) mode?? thanks.