We have never had any working Wireless Intrusion Prevention System on open-source network devices.
First try is this https://github.com/securingsam/krackdetector Krack detector, which acts like WIPS devices are already doing against Man-in-the-middle attack that KRACK actualy is.
I hope we will have this in Turris Omnia.
Turris Omnia will stand among the best entreprise Wi-Fi solutions as the one prepared against KRACK as only a few are.
Needs ctypes, which isn’t part of the default install:
# ./krack_detect.py wlan0
Traceback (most recent call last):
File "./krack_detect.py", line 6, in <module>
import ctypes
ImportError: No module named ctypes
Install ctypes:
# opkg install python-ctypes
Some folks will also need to know how to start it automatically. You’ll have to go tot he LuCI web interface, go to System|Startup, then go to the bottom to “Local Startup” and add the full path to the script there.
I’m planning on running it for a while to see what the load is before I decide to run it full time. My set up is pretty tightly controlled, so I don’t imagine I’ll really need it anyway.