It requires the ability to manipulate the wireless driver to set the NIC into this mode. This mode is often not simple to achieve. Monitor-mode, or "RF" monitor-mode implies you are not associated/connected to the WLAN, so you are DISCONNECTED, but you are LISTENING, or "monitoring". This is how most people experience Wi-Fi - associated to an AP, doing whatever it is they are doing - watching Netflix, sending an e-mail, upload a file to a server, etc. When a device is associated it can transmit/receive data through the AP. Connected is exactly what it sounds like - the NIC is connected, or in 802.11 parlance, "Associated", to an access point. There are two modes a wireless NIC can be in - connected/disconnected, and monitor-mode. In this article I'll dive in a little deeper to give some insight on what packet captures and RF Monitor-Mode are, are and what they can reveal. In a previous article I did a high-level overview of what wireless site surveys are and what they are used for.
0 kommentar(er)
