NetStumbler.org Forums - View Single Post

JoeTampa · 05-29-2002

There is no need for Kismet to probe. You only have two possibilities:

1. Broadcast SSID is enabled, the SSID is present in the Beacon Frames, and thus is immediately known. Done!

2. Broadcast SSID is DISabled, the SSID is not known, and the AP will not respond to a Probe Request with any other SSID but the correct one. Kismet (or any other program) would have to try literally every possible character combination to find the right SSID.. In effect, you're guessing a password. Much easier to either wait for a client to associate (passively) or run some software that will spoof a dissasociate frame and force the client to re-associate.

- Joe

05-29-2002	#6 (permalink)
JoeTampa Registered Member Join Date: Apr 2002 Posts: 51	There is no need for Kismet to probe. You only have two possibilities: 1. Broadcast SSID is enabled, the SSID is present in the Beacon Frames, and thus is immediately known. Done! 2. Broadcast SSID is DISabled, the SSID is not known, and the AP will not respond to a Probe Request with any other SSID but the correct one. Kismet (or any other program) would have to try literally every possible character combination to find the right SSID.. In effect, you're guessing a password. Much easier to either wait for a client to associate (passively) or run some software that will spoof a dissasociate frame and force the client to re-associate. - Joe