Wireless sniffer Kismet 2019-04-R1 adds new web UI with support for non-WiFi capture

A new major Kismet version has been released, almost three years after the previous stable version. The new 2019-04-R1 version has a massively rewritten code base, a new Web UI, support for non-WiFi capture types, and more.Kismet Is a wireless network detector, package sniffer and intrusion detection system. It works with any wireless card that supports raw monitoring (rfmon) mode and can sniff 802.11a / b / g / n traffic. In the latest Kismet version 2019-04-R1, the tool is no longer just WiFi, it now includes Bluetooth, 433MHz sensors (such as weather stations, TPMS tire pressure sensors or wireless thermometers), ADSB aircraft data, AMR-based power meters Support for wireless keyboards and mice built with nRF chipsets.
Kismet 2019-04-R1 includes a new web-based UI that allows more complex information to be displayed and is more flexible. It also makes it easy to access and configure Kismet from almost any device (desktop or mobile device) and allows the UI to be extended through plugins.
The new Web UI offers a wide range of functions-from displaying a list of devices with channel activity, alerts, etc. to displaying device details through real-time graphics, adding device notes, searching, and more. These are screenshots of the latest Kismet 2019-04-R1 Web UI:Kismet wireless snifferKismetKismet web user interfaceKismet web user interface

More changes for Kismet 2019-04-R1:

  • New REST-like API
  • New lightweight remote capture system supporting a large number of remote radios
  • Large dataset support: Kismet can now handle very large datasets, “scalable to more than 300,000 devices in a single session on a server with 16 gig RAM”
  • The new KismetDB log format combines device records, packet data, non-package data, system health, location, console messages, and more in one log file.
  • Kismet now leverages multi-core systems
  • Handling modern WiFi devices for capture
  • Handles modern WiFi standards for decoding
  • Real-time packet export
  • Alarms can be defined and triggered via REST endpoints

It’s also worth noting that starting with this release, Kismet will try to enter a more frequent release cycle, perhaps once a month or every two months so that it can incorporate smaller features and make improvements faster.

Install and use Kismet

There are official Kismet repositories for Kali Linux, Debian and Ubuntu, the first two libraries also support Raspberry Pi 3 and 0w. Ubuntu 19.04 is not yet supported. Instructions for adding Kismet repositories and installation tools can be found. Here.
I’m not sure about Kali Linux and Debian, but on Ubuntu, I also have to install pyModeS using PIP for the latest Kismet 2019-04-R1 to work properly (sudo apt install python-pip, Then pip install pyModeS).
After installation, make sure to add users to the kisset group:

sudo usermod -aG kismet $USER

And logout / login.
Now run kisset (don’t go with sudo):

kismet

After launching, point your web browser to http: // localhost: 2501 to access Kismet. Enter your new username and password, and from the Kismet Web UI hamburger menu (in the upper left corner of the Web UI), click Data Sources And add a data source. Kismet will not capture any packets until the data source is added! On other Linux distributions you will have download Tarball from the latest Kismet source and Build it Judging from the information I can find online, the latest Kismet 2019-04-R1 seems to have not been added to any official Linux distribution repository.
It is worth mentioning that Kismet puts WiFi in surveillance mode, some wireless network cards cannot be reset by simply turning on / off the wireless, and WiFi is unavailable after you stop using Kismet. In this case, you need to reboot the system to resolve this issue. If you have a removable WiFi dongle, you can remove it and re-insert it to reset it. Kismet documentation.

Source

Sidebar