Penetration testing

[jjxoni]

Sorry for posting in this area but i still havnt access to "Penetration tetsing area".

In my university i have to perform a penetration testing to a network. I have already get access to the network and sucessfully sniffed the trasmitted traffic.

Network is EAP + WEP.
What else can i do to the wireless network? Any ideas?

Thanks
ps. i dont want anyone to do my homework, just some more ideas what i could try.

[Virchanza]

Have you heard of "fast-track"? It has a thing called "autopwn": It will scan the computers on the network to see if any of them are vulnerable to attack. It has a fully automated process, you sit back and just wait for it to give you full control over the victim computer. Here's the website:

http://www.securestate.com/Pages/Fast-Track.aspx

[jjxoni]

I dont want to check the internal network for vulnerabilities.
Is anything more i can do to the wireless network? I dont want to test servers/ hosts etc

[ShadowKill]

I dont want to check the internal network for vulnerabilities.
Is anything more i can do to the wireless network? I dont want to test servers/ hosts etc

Well you can always browse for pr0n I suppose.... What is your end goal if not to gain access to the internal machines?

[jjxoni]

I think my goal is to check how secure is the wireless network. I dont know how deep should i go.

I will confirm that and come back

[killadaninja]

I think your teacher is expecting you to crack the wep key, jump on the network, and fire up wireshark, however if you want to do just a little more than everyone, also fire up driftnet, to sniff and decrypt passing images, and use nmap to intense scan the subnet, so you can tell him which ports are open and what protocols are running on the network.

[jjxoni]

I have already sniffed SCCP (cisco skinny) protocol and i will try to rebuild a call (the RTP) from the packets using VOMIT.

Drifnet looks interesting. I will try that too