Paul's Security Weekly Subscribe

nzyme – Free & Open WiFi Defense System – Lennart Koopmann – PSW #690

April 8, 2021

Nzyme is a new kind of WiFi IDS (WIDS) that detects adversaries by looking at hard to spoof characteristics of an attacker. Existing WIDS tend to look at extremely easy to spoof metadata like channels or BSSIDs. The new approach of nzyme looks at hardware fingerprints and physical attributes like signal strengths. For example, it constantly tries to follow the signal "track" of every WiFi access point in range and alerts once a second track appears because this is most likely someone spoofing the legitimate access point from a different location.

Segment Resources:

https://www.nzyme.org/

Register for Joff's Fun Regular Expressions class here:

https://bit.ly/JoffReLife

Full episode and show notes

Announcements

Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Guest

Lennart Koopmann

Lennart Koopmann

CTO at Graylog, Inc

Lennart founded Graylog as an Open Source project in 2009 to meet the needs of application developers, DevOps, and IT Ops teams. Since that time, he has led the transformation of Graylog into a robust enterprise application and established the company’s product and technology platform as one of the leading centralized log management solutions.

In his free time, he enjoys amateur boxing and working on his free and open WiFi IDS project nzyme.

Hosts

Paul Asadoorian

Paul Asadoorian

Founder at Security Weekly

https://securityweekly.com

Jeff Man

Jeff Man

Sr. InfoSec Consultant – Online Business Systems at Online Business Sytems

https://www.obsglobal.com/

Larry Pesce

Larry Pesce

Product Security Research and Analysis Director at Finite State

https://www.finitestate.io/

Lee Neely

Lee Neely

Information Assurance APL at Lawrence Livermore National Laboratory

Tyler Robinson

Tyler Robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

http://darkelement.io/

Related

Are We Thinking in the Right Way as CISOs? – Sajan Gautam – CSP #124

May 30, 2023

CISOs want to enable the business. But sometimes we must stand our ground and explain our position with rationale. So, how do we convince other people to act without telling their baby is ugly? Join us, as we discuss having difficult conversations.

Managed services

Optimizing Vendor Relationships: How to Get in Your Partners’ Good Graces – CFH #23

May 30, 2023

Obviously, managed security providers want to optimize their rapport with customers. But don't overlook the importance of fostering a mutually beneficial relationship with your cyber solution vendor partners as well. In this segment, we'll look at how MSSPs can best leverage their vendor agreements to ensure they're receiving top-notch, responsive ...

Managed services

Managed IAM: The Quest for an Evolved Identity Experience – Bill Brenner – CFH #23

May 30, 2023

Today marks the beginning of the Identiverse conference in Las Vegas, where leaders in security gather to discuss advancements in the world of identity and access management. For MSSPs that specialize in managed IAM services, it's important to stay on top of the latest trends, including those revealed in a series of reports and articles that CyberR...