Home Contact Us
 

Some feedback from OSWA attendees from the region:

"Yes the course was definitely an interesting and exciting one so far that I have ever attended. Clear examples and a hands on training approach is the way to train. Bravo..."

Naresh Latchand
NEC Solutions (Asia Pacific) Pte Ltd

 

"Interest knowledge and practical skills"

Huynh Thien Tam
e-Cop.net

 

"Yes, I would recommended this course to others about the stuffs and techniques it offer."

P.Janchavee
ACA Group Ltd(Thailand)

OSWA(tm)

ORGANIZATIONAL SYSTEMS WIRELESS AUDITOR

Wireless Auditing Certification

Course Highlights

The Organizational Systems Wireless Auditor™ OSWA™ is a an internationally-accredited practical technical wireless security auditing certification designed for those who want to learn more about the various ways to professionally perform a wireless security audit or penetration test, with the aim of identifying weaknesses in wireless deployments. With many organizations using wireless technologies and many countries announcing wireless internet access initiatives, attending the OSWA™ will give you a solid grounding in how to audit the security of wireless networks and clients.

The course focuses primarily on providing attendees with the technical knowledge, methodology and skills to executing a wireless audit or penetration test. The OSWA™, designed by wireless security professionals, teaches wireless security from the starting point of understanding the fundamentals of Radio Frequency (RF) and RF Spectrum Analysis, through to understanding the IEEE 802.11 specification and how to analyze information contained in 802.11 packet dumps before arriving at 802.11-based security concerns such as how to penetrate wireless LANs and going on to advanced methods of auditing wireless networks by targeting wireless clients, as well as how to build your own wireless tools to augment your wireless auditing capabilities. In addition, it covers how to audit other wireless technologies such as Bluetooth and RFID.


Course Objectives

This instructor-led, intensely practical, hands-on programme teaches a vendor-neutral approach to practical security testing of wireless networks and provides attendees with the correct balance of skill and ethics based on security best practice. By equipping attendees with the correct technical skill sets, as well as an understanding of legal issues involved in testing a target, the OSWA™ will enhance the capability of professional security testers and provide beginners with the proper methodology, skills and tools to conduct consistent and comprehensive wireless security tests.


Programme Outline:

Practical coursework is interspersed throughout the OSWA™ programme. The following is a brief course outline.

Part 1: Why Audit Wireless Networks?
The Need for Wireless Auditing
Legal & Best Practice compliance
The 5E Attacker Methodology

Part 2: Radio Frequency (RF) Fundamentals
The Nature and Characteristics of RF
Power and Distance
Signal Attenuation
RF Interference
RF Spectrum Analysis
Understanding the Wireless Footprint :
ThinkSECURE's MAX SOIL & SR SOIL Concepts
Workbook Lab Exercises

Part 3: Wireless 101
802.11 and other wireless standards
Auditing RFID & Bluetooth Wireless Equipment
Wireless Chipsets
Wireless Accessories
Wireless Frame Analysis
Locking Down the Auditing Station
Tool Selection
The OSWA™-Assistant
Workbook Lab Exercises

Part 4: Wireless Security Testing: Infrastructure
Understanding 802.11i
WEP Analysis
Auditing WEP
WPA/2 & WPA/2-PSK Analysis
Auditing WPA/2 & WPA/2-PSK
802.11-based Denial of Service
Workbook Lab Exercises

Part 5: Wireless Security Testing: Client
Auditing the Wireless Client
Probemapping : Client Probes & Probing
The WCCD Vulnerability
Workbook Lab Exercises

Part 6: Testing with a Twist
Ph00ling
Long Range Auditing
Build Your Own Hardware: Cantennas
Build Your Own Hardware: NIC Jacks
Concluding the Audit
Workbook Lab Exercises

Methodologies & Tools:
The following are just some of the Methodologies & Tools introduced during the OSWA™ programme:

5E Attacker Methodology
OSWA™-Assistant Wireless
Auditing LiveCD Toolkit
Iwconfig / Iwpriv / Wlanconfig
Wireshark / Ethereal
Kismet
Airodump-ng
Aireplay-ng / Packetforge-ng
Aircrack-ng / Aircrack-ptw
CoWPAtty
Probemapper
MDK2 / MDK3
Netstumber
RF Spectrum Analyzer
WiFi Finder
Digital Hotspotter
Yagi Antenna
Cantenna
Rfdump ... and much more!


Who Can Benefit From This Programme:

IT Professionals who will benefit from this programme include the following:

  • Security Analysts / Consultants
  • Penetration Testers
  • Audit Teams
  • Network Designers
  • Network Administrators
  • System Administrators
  • IT Engineers

and anyone who is involved in the security, testing, design, deployment and/or operation of a WLAN.

Course Benefits

Taught by certified and accredited trainers, this practical 3-day, hands-on OSWA™ course improves the skills and capabilities of IT-Security professionals by equipping them with the relevant technical skills and an understanding of ethical and legal issues involved in wireless auditing. At the end of the course, program participants will benefit with the following:

A solid understanding about Radio Frequency (RF) fundamentals.
The ability to isolate and analyze wireless networks from Layer 1 to Layer 3.
The knowledge of what preparations have to be made prior to conducting a wireless security audit.
Comprehensive technical understanding of how to practically execute a wireless security audit.
How to audit wireless networks using a variety of tools, including DIY tools.
The ability to recommend countermeasures based on wireless audit results.
The legal implications of wireless security auditing.

The course is an ideal complement to the defense-oriented OSWiSP™ secure wireless deployment and administration training programme.


MY Office : 72-3C, JALAN PUTERI 2/4, BANDAR PUTERI, 47100 PUCHONG, SELANGOR, Malaysia. Tel:+603-8063 9300 fax:+603-8063 9400
SG Office : 259, Onan Road, Singapore 424651. Tel: +65-6468 3325 Fax: +65-6764 5646