kismet-2005_08_R1-24 (Wardrive using GPS)

# get http://patches.aircrack-ng.org/madwifi-ng-r1679.patch
# get http://snapshots.madwifi.org/madwifi-ng/madwifi-ng-r1679-20060707.tar.gz 

# tar zxvf madwifi-ng-r1679-20060707.tar.gz
# cd madwifi-ng-r1679-20060707/
# patch -Np1 -i ../madwifi-ng-r1679.patch
# make
# make install
# mod_probe ath_pci

# wlanconfig ath1 create wlandev wifi0 wlanmode monitor

# rpm -ihv kismet-2005_08_R1-24.i586.rpm

source=madwifing_g,ath1,ath_pci

# desc | less
drivers/usb/serial/usb-serial.c: USB Serial support registered for Generic
usbcore: registered new driver usbserial_generic
drivers/usb/serial/usb-serial.c: USB Serial Driver core v2.0
drivers/usb/serial/usb-serial.c: USB Serial support registered for MCT U232
mct_u232 1-1:1.0: MCT U232 converter detected
usb 1-1: MCT U232 converter now attached to ttyUSB0
usbcore: registered new driver mct_u232
drivers/usb/serial/mct_u232.c: Magic Control Technology USB-RS232 converter driv
er z2.0

# cat /dev/ttyUSB0 
,,M,,*66
$GPGSA,A,1,,,,,,,,,,,,,,,*1E
$GPGSV,3,2,10,19,18,045,00,24,09,158,00,26,31,300,00,27,45,142,00*7C
$GPGLL,,,,,,V,N*64

# gpsd -p /dev/ttyUSB0 -s 4800

# kismet

# Start gpsd
gpsd -p /dev/ttyUSB0 -s 4800

# Create ath1 as a monitor mode interface (madwifi)
wlanconfig ath1 create wlandev wifi0 wlanmode monitor

# Start Kismet
kismet

# kill gpsd process
killall gpsd

Generate map

#!/bin/bash
#
# Usage: mygpsmap 
# Run where *.gps are
# create result directory for maps
#

# Map file name prefix
FILE="tokyo-`date +%Y%m%d`"

# Own equipment to exclude
MAC_OUR="00:03:2F:23:A2:F4,00:0E:35:7B:8D:39"

# Other equipment to exclude
MAC_KNOWN="00:A0:B0:40:5C:84,00:04:23:52:80:41,00:30:13:FA:58:06"

# gpsman command with nice
GPSMAP="nice gpsmap"

# gps files (kismet output files)
FILEGPS=`ls *.gps`

## Options: thread(z)=10, legend(k), Network Color(n)=1, Draw Power(p)
OPT="-z 10 -k -n 1 -p"

# Labels=ssid, manuf
OPT="$OPT -l ssid,manuf"

# Scale to change, if need, i.e., Scale(s)=4000, Mapsize(d)=10000,10000
# OPT="$OPT -s 4000 -d 10000,10000" 

# Result map output directory
RESULT="result"

# Result directory
if [ ! -d $RESULT ]; then
	mkdir $RESULT
fi

# Range(r)
$GPSMAP $OPT -f $MAC_KNOWN,$MAC_OUR \
	-o $RESULT/$FILE-range.png \
	-r $FILEGPS

# Range(r), Track(t)
$GPSMAP $OPT -f $MAC_KNOWN,$MAC_OUR \
	-o $RESULT/$FILE-range-track.png \
	-r -t $FILEGPS

# Hull(u), Track(t)
$GPSMAP $OPT -f $MAC_KNOWN,$MAC_OUR \
	-o $RESULT/$FILE-hull-track.png \
	-u -t $FILEGPS

# Scatter(a), Track(t)
$GPSMAP $OPT -f $MAC_KNOWN,$MAC_OUR \
	-o $RESULT/$FILE-scatter-track.png \
	-a -t $FILEGPS

Wardriving Steps

# mkdir tokyo-20060813
# cd tokyo-20060813
# mykismet

# mygpsmap