Kismet

Kismet (software) is an Layer2 IEEE 802.11 network detector and sniffer. It can be utilized as Intrusion detection system. Kismet works with WNICs in monitor mode, which means it works completely passive! Kismet is split into three separate modules:

It is possible and due to limited resources prudent to split the work amongst your OpenWrt-enabled router and a host machine running some Linux distribution!

Note1: kismet-drone from OpenWrt repos does not support channel hopping to search through all of the wireless channels! A small script has to be ran to manually do the channel hopping.
Note2: Also, not all wireless drivers support the reporting of the received signal strength. So the client may not display the correct signal strength.
Note3: It is not possible to see management frames in monitor mode! Try wireless instead.

opkg

opkg update
opkg install kismet-drone

sudo apt-get update
sudo apt-get install kismet

http://packages.debian.org/search?suite=squeeze&arch=any&searchon=names&keywords=kismet

If the version available in your distro's repositories does work with the one in the OpenWrt repos, you may need to install a matching one manually:

mkdir ~/kismet
cd ~/kismet
wget http://www.kismetwireless.net/code/kismet-2011-03-R2.tar.gz
tar -zxvf kismet-2011-03-R2.tar.gz
cd <kismet dir>
./configure
make
make install

vi /etc/kismet_drone.conf

Change the line

to

(You could also allow access to all the machines on your local network by doing 'allowedhosts=a.b.c.0/24' where a.b.c are the first three octets of your networks ip address. This would also make it possible for more than one machine at a time to connect to the drone and display the results.)

Next, change the line

to

(I have read that this line should be different if running another version of the hardware - this works with v2.2 of the wrt54g).

• File: /etc/kismet.conf or File: /usr/local/etc/kismet.conf

Note: I found that the config files were in /etc/kismet when installing using apt-get, but they were in /usr/local/etc when installing from source.]

First, you need to make a kismet user for the server to run as.

 adduser kismet

...and fill in the blanks. Then you need to edit the /usr/local/etc/kismet.conf file and change

to

Set the wireless source by changing

to

I found that kismet couldn't write its log files to the default directory, so changed the line

to

so that the log files get saved in the kismet users directory (/home/kismet).

• File: /etc/kismet.conf or File: /usr/local/etc/kismet.conf

1. put your WNIC into Monitor mode:
   1. cfg80211 drivers:

      iw bla bla bla

   2. Atherors proprietary:

      bla bla

   3. Broadcom proprietary:

      wl ap 0
      wl disassoc
      wl passive 1
      wl promisc 1
      wl channel <channel number>

2. start kismet-drone:

   ./kismet_drone -f kismet_drone.conf

1. First you will need to start the server in the background

   /usr/local/bin/kismet_server &

2. and then start the GUI client:

   /usr/local/bin/kismet_client

• Project Website
• http://www.renderlab.net/projects/wrt54g/openwrt.html
• http://www.supertechguy.com/help/security/kismet-drone