Wireless Reconnaissance in Penetration Testing

In many penetration tests, there is a lot of useful information to be gathered from the radios used by organizations. These radios can include two-way radios used by guards, wireless headsets, cordless phones and wireless cameras. Wireless Reconnaissance in Penetration Testing describes the many ways that a penetration tester can gather and apply the information available from radio traffic. Stopping attacks means thinking like an attacker, and understanding all the ways that attackers gather information, or in industry terms profile, specific targets. With information from what equipment to use and how to find frequency information, to tips for reducing radio information leakage, to actual case studies describing how this information can be used to attack computer systems, this book is the go-to resource for penetration testing and radio profiling.

• Author Matthew Neely is a respected and well-known expert and speaker on radio reconnaissance and penetration testing
• Includes real-world case studies of actual penetration tests using radio profiling
• Covers data leakage, frequency, attacks, and information gathering

About the Authors

Matt Neely (CISSP and CTGA) is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm. At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing new offensive and defensive capabilities. His research interests include the convergence of physical and logical security, lock and lock picking, cryptography and all things wireless.

Mr. Neely is actively involved in public speaking and has spoken as a subject matter expert over seventy-five times at various local, national and international conventions and user group meetings including BlackHat EU, DefCon, ShmooCon, Thotcon and Notacon. Mr. Neely also guest lectures at local colleges on topics on security and risk management. He is a founding member of the Cleveland Chapter of TOOOL and is a host on the Security Justice podcast.

Alex Hamerstone is the Compliance Officer for TOA Technologies, an international workforce management software company. He is an RABQSA certified ISO27001 Auditor and is active in the security community.

Chris Sanyk is an IT professional with over twelve years of experience in everything from desktop publishing and web design, PC and server hardware, to user support, system administration, and software development. In his spare time, he blogs and develops video games at his website.