WLANmonitor organizes any rogue access points into the following pre-defined (sub) groups:
- All APs: Contains the overview of the APs in all of the scanned WLANs and thus represents the superset of all subsequent groups. The APs are colored according to their grouping.
- New APs: Contains new unknown and unconfigured WLANs. The relevant APs are yellow in color.
- Rogue APs: Contains WLANs that are identified as rogue and require immediate observation. The relevant APs are red in color.
- Unknown APs: Contains WLANs that require further investigation. The relevant APs are gray in color.
- Known APs: Contains WLANs that pose no risk. The relevant APs are gray in color.
- Own APs: Contains new affiliated WLANs from APs monitored by WLAN monitor. The relevant APs are green in color.
Note: If a parameter is changed on an AP, e.g. the security settings, then it is displayed again as a newly discovered AP.
Within each group, WLANmonitor displays the following information about the rogue APs:
- Time of first and last detection
- Name of the AP (identification)
- MAC address of the AP for this WLAN (BSSID)
- Name of the WLAN (SSID)
- The frequency band used
- The channel in use
- Encryption method used for radio communication
- Use of the 108 Mbps mode
When you click a list entry, WLANmonitor displays the following details:
- IP addresses of the APs scanned by the WLAN in question
- The time when last seen or of the last scan
- WLAN interface used to perform the scan
- Signal strength of WLAN reception by the APs
- Noise level
You have the option to move the found WLANs into an appropriate group depending on their status. You can set up your own network groups within the individual groups by using the context menu (right mouse button), with the exception of the group All APs.
