Like every other website on the planet, SmallNetBuilder uses cookies. Our cookies track login status, but we only allow admins to log in anyway, so those don't apply to you. Any other cookies you pick up during your visit come from advertisers, which we don't control.
If you continue to use the site, you agree to tolerate our use of cookies. Thank you!

Router Charts

Click for Router Charts

Router Ranker

Click for Router Ranker

NAS Charts

Click for NAS Charts

NAS Ranker

Click for NAS Ranker

More Tools

Click for More Tools

Wireless How To

Network Recon with Kismet

You're now ready to start Kismet, which is a Linux-based wireless scanner. It's a handy tool for surveying the wireless airwaves around you to find target wireless LANs to crack. Kismet also captures traffic, but there are other tools such as airodump (part of Aircrack) that do a better job in the context of cracking WEP. So we'll be using it to make sure our wireless card is working and for scanning for wireless networks. Then we will switch to different tools in Part 2 to actually sniff and capture traffic.

You get to Kismet by clicking on the Programs icon, then Auditor, then Wireless, then Scanner/Analyzer, and finally Kismet (Figure 13).

Getting to Kismet

Figure 13: Getting to Kismet
(click image to enlarge)

In addition to scanning wireless networks, Kismet captures packets into a file for later analysis. So Kismet will ask for the directory to save the captured files in. Click Desktop and then OK (Figure 14).

Specifying the Save Location

Figure 14: Specifying the Save Location

Kismet will then ask for a prefix for the captured files (Figure 15). Change the default name to capture and then click OK.

Specifying the file prefix

Figure 15: Specifying the file prefix
(click image to enlarge)

As Kismet starts, it will display all the wireless networks in range (Figure 16), which should hopefully include the target WLAN you set up. The channel number, under the Ch column, should match what you have written down. If Kismet has found many nearby access points, you may want to move the lab farther away from the Access Points, or disconnect any high-gain antennas you have connected.

Kismet at work

Figure 16: Kismet at work
(click image to enlarge)

While Kismet is jumping through all the channels and SSIDs looking for interesting information, you will see the number of packets changing for all the access points. In the column at the right side of the screen, Kismet displays the total number of networks found, the number of packets captured and the number of encrypted packets seen.

Even with the target computer off, Kismet is detecting packets from our AP. This is because APs send out "beacons", which tell wireless computers that an AP is in range. You can think of it as the AP announcing, "My name is XXXXX, please connect to me."

More Wireless

Wi-Fi System Tools
Check out our Wi-Fi System Charts, Ranker and Finder!

Support Us!

If you like what we do and want to thank us, just buy something on Amazon. We'll get a small commission on anything you buy. Thanks!

Over In The Forums

Hi,Need a litte advice here ...I have an ASUS RT-AC66U running Merlin fork (john9527) for some time.I've some issues with wifi range, in 2.4Ghz band. ...
Hi everyone, Been lurking around here but never posted, this forum was exactly what i was looking for. Long story short ive setup AIMESH countless tim...
The "Fraunhofer Home Router Security Report 2020" might be an interesting read:https://www.fkie.fraunhofer.de/cont...omeRouter/HomeRouterSecurity_2020...
After taking a hiatus from Asus, I'm back with Asus and Merlin!I have the AX88U, but the wifi connection has been somewhat spotty. In the adjacent roo...
I currently am using an ac-88u with merlin firmwareI am due for ISP recontract which comes with some bundlesthere are some pricing differences (+-$20/...

Don't Miss These

  • 1
  • 2
  • 3