OSWA Assistant – Wireless Hacking & Auditing LiveCD Toolkit


The OSWA-Assistant is a no-Operating-System-required standalone toolkit which is solely focused on wireless auditing. As a result, in addition to the usual WiFi (802.11) auditing tools, it also covers Bluetooth and RFID auditing. Using the toolkit is as easy as popping it into your computer’s CDROM and making your computer boot from it!

This toolkit is a contribution to the wireless security/auditing community and, as the “Assistant” moniker implies, and is designed for the following groups of people:

  • IT-security auditors and professionals who need to execute technical wireless security testing against wireless infrastructure and clients;
  • IT professionals who have responsibility for ensuring the secure operation and administration of their organization’s wireless networks;
  • SME (Small & Medium Enterprise) and SOHO (SmallOffice-HomeOffice) businesses who do not have either the technical expertise or the resources to employ such expertise to audit their wireless networks;
  • Non-technical-users who run wireless networks at home and who would like to audit the security of their wireless home networks and laptops but don’t know how.

You can download OSWA Assistant here:

oswa-assistant.iso

Or read more here.

Posted in: Hacking Tools, Networking Hacking Tools, Wireless Hacking

, , , , , , , , , ,


Latest Posts:


HELK - Open Source Threat Hunting Platform HELK – Open Source Threat Hunting Platform
The Hunting ELK or simply the HELK is an Open-Source Threat Hunting Platform with advanced analytics capabilities such as SQL declarative language, graphing etc
trape - OSINT Analysis Tool For People Tracking Trape – OSINT Analysis Tool For People Tracking
Trape is an OSINT analysis tool, which allows people to track and execute intelligent social engineering attacks in real-time.
Fuzzilli - JavaScript Engine Fuzzing Library Fuzzilli – JavaScript Engine Fuzzing Library
Fuzzilii is a JavaScript engine fuzzing library, it's a coverage-guided fuzzer for dynamic language interpreters based on a custom intermediate language.
OWASP APICheck - HTTP API DevSecOps Toolset OWASP APICheck – HTTP API DevSecOps Toolset
APICheck is an HTTP API DevSecOps toolset, it integrates existing tools, creates execution chains easily and is designed for integration with 3rd parties.
trident - Automated Password Spraying Tool trident – Automated Password Spraying Tool
The Trident project is an automated password spraying tool developed to be deployed on multiple cloud providers and provides advanced options around scheduling
tko-subs - Detect & Takeover Subdomains With Dead DNS Records tko-subs – Detect & Takeover Subdomains With Dead DNS Records
tko-subs is a tool that helps you to detect & takeover subdomains with dead DNS records, this could be dangling CNAMEs point to hosting services and more.


11 Responses to OSWA Assistant – Wireless Hacking & Auditing LiveCD Toolkit

  1. the BMX guy June 9, 2008 at 11:28 am #

    Nice thing to have, especially if you are like with only a basic understanding of how WiFi works and the need to be secure. Downloaded. Thank you :)

  2. Bogwitch June 9, 2008 at 12:33 pm #

    I’m downloading a copy as I write this.
    It looks as though most, if not all of the tools listed are included in BackTrack 3 but the main difference is this has an easy to use GUI type menu. I think it’s a good idea that non-professionals are empowered to audit their own WiFi networks but it also means that some of the dumbest skiddies are also thus empowered.

  3. razta June 9, 2008 at 12:40 pm #

    WOW! Fast download speeds on the iso! Gona give it a try, hope it supports my wireless card.

  4. Navin June 9, 2008 at 1:41 pm #

    I agree Bogwitch but isn’t tht what the all technologies are about??

    1>Provide the same tools to EVERYONE,
    2>Bad guy discovers a flaw and exploits it,
    3>Good guy stops bad guy frm doing so…..

    Repeat step 2 and 3 till perfect (feel free to drool) “unhackable” system is developed!!

    Right??

  5. Bogwitch June 9, 2008 at 2:10 pm #

    I wasn’t saying that it is a good or a bad thing that anyine can use this, just “Watch out, skiddies have this too!”

  6. Petester June 10, 2008 at 8:22 pm #

    Anyone checked this out yet?

    I’m interested in knowing what the patched driver stability out of the box is like.
    BT3 works real sweet for me :)

    I’ll test it later, should be interesting.

  7. Rightful June 11, 2008 at 3:44 am #

    Beware people script kiddies obtained another sniper in their arsenal of tools.
    And Navin your flow should be like this
    1->Provide Same tools for Everyone
    2-> “Bad” guys Discover and Exploits it
    -> Script Kiddies use it
    3) Good guys scamble to fix the mess made by Script Kiddies

    Loop results to infinity and beyond. Systems are still hackable due to mistakes by humans not machines/systems/sentinel/what ever.

    In overall nice tool.

  8. Pantagruel June 11, 2008 at 9:37 am #

    As with most of the pen-test tools, this one can be used or abused, hence the ethical bit. It’s the same discussion about the kitchen knife, you can cut up the turkey just as easily as your victim.

    SKiddies are quite easily deterred by keeping your server well maintained and patched. They usually go away when encountering a ban/block for their IP, they simply lack the brains to adjust or are plain lazy.

  9. razta June 11, 2008 at 10:36 pm #

    Damn Live CD dident have my video card drivers! I’ll test it in the laptop.

  10. GEONOSIUS June 20, 2008 at 12:23 am #

    Buy only laptop with atheros wireless card.Any Atheros monitoring MODE and inject packet JUST FUCKED WITH BT3 FIRST THE KEY 512 BIT WPA PSK III NEW WPA KEY T-Telecom captured packed size 14gbyte finished in 28 days
    i love Bt3 and Auditor

  11. Petester June 20, 2008 at 9:42 am #

    I’ve road tested the BT3 Final Pre-release version and can confirm that drivers are patched perfectly for:

    Atheros MAD WIFI
    Realtek RT2500
    Alfa-networks AWUS036H USB Interface (my personal fav)
    …..not tested any others yet…

    All work great and packet inject perfectly.