Help: Can anyone identify what this is?

[Archivists]

I'm a pen tester by trade. I don't believe these are for wireless attacks. They appear to be RF signal detectors; the dB scale is to indicate signal strength and for locating the proximity of broadcasting access points or devices.


Sent from [ProtonMail](https://protonmail.ch), encrypted email based in Switzerland.

-------- Original Message --------
Subject: Re: Help: Can anyone identify what this is?
Time (GMT): Mar 20 2015 01:49:12
From: alfiej at fastmail.fm
To: coderman at gmail.com
CC: cypherpunks at cpunks.org, cryptography at metzdowd.com

On Fri, Mar 20, 2015, at 11:21 AM, coderman wrote:
> On 3/18/15, Alfie John wrote: this is likely
> automated wifi attack gear. the three units together could cover
> channels 1, 6, 11 concurrently. (in my own kit, 4-8 radios is
> sweet spot)

Well that's interesting. I wondered why there were three units.

> the extra battery capacity lets it run for days attacking on
> full auto.

He put it in near the stairwell door (almost next to our door RFID), but
it was in full view of anyone walking to the elevators. So I don't think
he was trying to hide, otherwise he would have done it from behind the
stairwell door and not in plain sight. Maybe it was just bad opsec?

> you should be running wireless intrusion (e.g. custom kismet?)
> monitoring to look for malicious activity. and of course, it is time
> to change all your WPA2 passwords! (or switch to WPA-Enterprise)

Awesome. Thanks for the advice. Will look wireless intrusion detection.
WPA-Enterprise too.

Alfie

--
Alfie John
alfiej at fastmail.fm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/html
Size: 1809 bytes
Desc: not available
URL: <https://lists.cpunks.org/pipermail/cypherpunks/attachments/20150319/de606455/attachment-0002.txt>