align-toparrow-leftarrow-rightbackbellblockcalendarcamerachatcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-crosscrosseditemptyheartfacebookfullheartglobegoogleimagesinstagramlocation-pinmagnifying-glassmailmoremuplabelShape 3 + Rectangle 1outlookpersonplusImported LayersImported LayersImported Layersshieldstartwitteryahoo

DCMeetup1402 - Wireless Pentesting

  • Jul 16, 2014 · 6:00 PM
  • This location is shown only to members

The next meetup will be presented by Mr. John Fulmer on July 16, 2014. Along with previously presenting for us he has also presented at DEFCON in Las Vegas, Nevada.  We're very excited to see what John has new for us.

John Fulmer works as a Systems Engineer for a small defense contractor in the Washington DC metro area. By day he works with large government agencies reviewing network and security architectures, reviewing information assurance and information security policies and guidance, and advising on matters of policy and governance. By night he enjoys snooping the airways be it the amateur radio bands or his neighbors wireless networks. He is a father of two, 24 year Navy veteran and holder of an amateur radio Extra Class license. 

He is very approachable and welcomes all questions pertaining to wireless activities. He has attended nearly all of our past meetups and normally refers to himself as "the old guy in the back of the room." 

Looking forward to seeing you!

- Tyrone

#C6S
#DCMeetup1402

Join or login to comment.

  • Emme B.

    Great session, folks. Scrub the slides and post 'em! :-)

    July 17, 2014

  • Joe E.

    Thank you organizer(s)! Thanks John, very comprehensive. Perhaps we can look forward to an "intermediate" level sometime?

    July 17, 2014

  • Michael M.

    Sorry I had a late change and cann't make it. Next time.

    July 15, 2014

  • Erin

    What is the recommended parking?

    July 14, 2014

    • Tyrone E. W.

      There is free parking in the Pentagon parking lot. The lot is on the opposite corner of the River House complex.

      July 14, 2014

    • John F.

      Be very careful and don't show up too early if you are going to park there. They boot in that lot so make sure you only park there after 5:30-6:00 PM unless you have Pentagon access and can register with the Parking Office.

      July 14, 2014

  • John F.

    Still looking for what people would like me to talk about? I have a basic Wireless Penetration Testing information - hardware, operating systems and tools.
    So speak now or forever hold your peace.

    1 · July 4, 2014

    • 'W'

      John, what Operating System and toolkits should I have installed to participate. Looking for a recommendation.

      July 11, 2014

    • John F.

      Ivy - I would recommend have either Back|Track 5, Kali-Linux, or Pentoo. All three of these come on a Live CD that you can boot and run without having to install to your hard drive or to a VM. If you want to have faster response/performance then installed any of them to a hard drive and boot from them, or install on a virtual machine.

      1 · July 11, 2014

  • John F.

    For those of you that want to practice or to try and follow along with some of the information I'll be presenting, I highly recommend you bring a laptop. You will need either Back|Track, Kali-Linux, or Pento running either on bare metal or in a VM. Make sure that you bring an external, USB or PCMCIA based, wireless card that supports injection. If all of that is completely greek to you, then you will definitely want to attend as I will be covering what all that means with regard to Wireless Penetration testing. Sorry Mac and Windows users - this is the one place where Linux out supports those two operating systems.

    2 · July 10, 2014

  • Ian

    Will John demoing his ideas on a screen or will he just be talking to us about wireless pentesting? Also, what topics will be covered?

    June 26, 2014

    • Tyrone E. W.

      There will be a projector. I'm sure there will be demos and labs to boot

      June 26, 2014

    • John F.

      Don't be too sure about demo's -- too easy for someone in the audience to really mess live demo's up. I will have PCAPs that I will be using as necessary for examples.

      July 10, 2014

  • Amir A

    I guess you can just drill down on wireless pentest and what tools you can do wireless pentest with, how often do companies have their pentesters do the wireless pentest etc and I guess hands on practice.

    July 8, 2014

    • John F.

      Good questions. There are two camps here and all I can say is that it really varies but the current trend seems to be more dedicated wireless request vs wireless combined with standard wired pentest.

      July 10, 2014

  • k L.

    Touching on the "soft" side of testing might be useful: Working with the client before the test, helping them understand the results, and how to make testing a part of a robust security program.

    July 9, 2014

  • Chai

    Is it possible to attend remotely, dial in and webex?

    June 27, 2014

    • John F.

      Chai - highly doubtful as there is no Internet access, other than tethering that I am aware of, not to mention the talk will not be recorded.

      June 27, 2014

  • John F.

    Good luck with that. I have seen the former but don't recall seeing the latter first hand. However, I consider both beyond a Infosec 101 level.

    June 27, 2014

  • Ian

    Two things that I want to see in wireless hacking: a realistic man-in-the-middle attack where the target gets a good Internet connection and the attacker is able to capture login information; and SSL downgrade.

    1 · June 27, 2014

  • John F.

    For you I am going to have a WAP running WPS so you can show that it is as easy as you said it was to break WPS.

    1 · June 27, 2014

    • Ian

      I fear a trap! But I will try!

      1 · June 27, 2014

  • Noel W.

    I will miss event due to conflicts with a class i have to attend.

    June 27, 2014

  • John F.

    If you want to try and practice your skills then you will need to bring something with you.

    1 · June 27, 2014

  • John F.

    I sent something out earlier asking what people wanted to see, hear, and or learn. I can do a presentation on the hardware and software needed, I attempt demonstrations, or I can hold a mini-Wireless Capture the Flag contest - most likely two of the three in the allotted time.
    I will have at least one Wireless Access point up and running that people can try and get access to if they already know and understand the basics but since this is a "101" group, I thought I would focus on the basics of what's involved in a Wireless Penetration Test more than trying to loose the new folks in the room by just doing demo's on breaking wireless Keys, for which there are hundreds of on-line video's available.

    June 26, 2014

    • Ian

      That sounds interesting. So you want us to bring laptops with Kali and an Alfa wireless card, or whatever?

      June 26, 2014

  • Steve

    This sounds excellent; I never made it to the wireless village last year and was hoping to spend more time in there this year (just booked my tickets for this year's con), this should be great.

    June 26, 2014

Our Sponsors

  • Cover6 Solutions

    Training material and logistical assistance

  • WeWork

    Location space & 10% discounts when referencing "WeWork Cyber Security."

  • Novetta

    Logistical support

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy