A review and comparative analysis of vulnerability scanning tools for wireless LANs

Kejiou, Abheenesh and Bekaroo, Girish ORCID: https://orcid.org/0000-0003-1753-4300 (2022) A review and comparative analysis of vulnerability scanning tools for wireless LANs. 2022 3rd International Conference on Next Generation Computing Applications (NextComp). In: IEEE Nextcomp 2022, 06-07 Oct 2022, Flic-en-Flac, Mauritius. e-ISBN 9781665469548, e-ISBN 9781665469531, pbk-ISBN 9781665469555. [Conference or Workshop Item] (doi:10.1109/nextcomp55567.2022.9932245)

Preview

PDF - Final accepted version (with author's formatting)
Download (621kB) | Preview

Official URL: https://doi.org/10.1109/nextcomp55567.2022.9932245

Abstract

The 21st century has been characterized by the widespread proliferation and use of wireless networks, notably, Wireless LANs, that enhanced access to information and resources to businesses and the society at large. However, WLANs are vulnerable to a range of security issues such as replay and KRACK attacks. In addition, the underlying security protocols used within WLANs, including Wired-Equivalent Privacy and the different versions of the Wi-Fi Protected Access have had security vulnerabilities that led to deprecation of few previous versions. As such, in the process of hardening security of such networks, vulnerability assessment is important and for this, various vulnerability scanners are available on the market. This paper critically reviews and analyses key vulnerability scanners for the context of WLANs. As part of the investigation, four tools, notably Nessus Vulnerability Scanner, OpenVAS, Nexpose and GFI LanGuard are reviewed, and insights are provided following practical utilization. As key findings, different vulnerability scanners were found to address different kinds and number of vulnerabilities, where some of them can be more granular than others, even in terms of output provided to the user. Moreover, the scan duration was not consistent across tools and does not corelate with the number of vulnerabilities detected.

Item Type:	Conference or Workshop Item (Paper)
Sustainable Development Goals:	Goal 9: Industry, Innovation, and Infrastructure
Theme:	Creativity, Culture & Enterprise
Keywords (uncontrolled):	WLAN; Vulnerability Scanner; Vulnerability Assessment; Nessus Vulnerability Scanner; OpenVAS; Nexpose; GFI LanGuard
Research Areas:	A. > School of Science and Technology
Item ID:	36780
Notes on copyright:	© 2022 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Useful Links:	Publisher's T&Cs
Depositing User:	Jisc Publications Router
Date Deposited:	21 Nov 2022 12:44
Last Modified:	22 Nov 2022 12:16
URI:	https://eprints.mdx.ac.uk/id/eprint/36780

Actions (login required)

View Item

Statistics

DownloadsShow export options

Activity Overview

6 month trend

75Downloads

6 month trend

29Hits

Additional statistics are available via IRStats2.

CORE (COnnecting REpositories)