TODO:
- BUG: At the summary (end's summary) an ad-hoc client is identified as an AP
- Write in pannel windows if a card is STA/AP or AD-HOC not only STA/AP
- Detect jammer (try to identify jammer with some sequence number and TimeStamp)
- Identify active scanner (netstumbler, dstumbler and Windows XP)
    Jammer and identify spoofed packet (two shot in one hole :)
- Do a dynamic allocation of catched data/packets
- In IDS : Analyse also when it's not a broadcast packet add a new array
    (Mac@ cli, SeqNum)
- Make a french version of README and Scanner
- detect if wget is available (for oui base in makefile)
- Interface with Snort and/or Prelude
- If Challenge and response are catched, do the XOR to get a keystream.
- Add option to save IV, Challenge, crypted challenge and Keystream
- if no name is given (for file) create an auto named file 
    WifiScanner.date.[tcp,dbg,txt,dot,ids,wep]
      .tcp : file contanning all network traffic - PCAP format (-W option)
      .dbg : All output (debug and normal output)
      .txt : Normal output (-F option)
      .dot : graphical architecture (-D option)
      .ids : All IDS alert - txt format with timestamp
      .wep : All weak DATA to crack WEP
      .kst : IV, Challenge, crypted challenge and Keystream - To do a Wep
             attack and clear text cryptographic attack
- Use long-option for a better configuration
- Add TimeFirstSeen and TimeLastSeen in data structure
- If TODS=1 and FROMDS=1, There are 4 MAC Add, program expect always 3,
    so all data after are not correct
- send IDS alert to syslog and/or a file
- Add bpf filter as parameter
- Add functionnality to change channel interactively with + and - keys
  (So option to change manually the channel is needed)
- Arrg so many options ... perharps I must think to a parser of option
  file ...
- Need to be more independant from linux-wlan-ng code.
- If scan on only one channel, do not write delta betwen detected channel and
  scanned channel
- Possibility of scroll in pannel window
- Add capability to read and analyse data from pcap file.
- Change channel if CHANNEL_READ_COUNT is reach AND buffer is empty ND buffer
  is empty !
- Add capability to choise the channel range scan.
- Add a default display of unknow or un-analysed packet
- create man page
- Add capability to stop scan mode for a moment
- Add capability to ignore some MAC Address in interactive mode
- Change spectral repartition function to use means (under 16 value) and not
  max of value


On the Way:
- Add more comment
- Add description of each functions
- Resolve equation y=ax+b and store a and b coef. This will used to detect ...
- Do multitread : One thread for changing channel, one another to analyse
  paquets, and a third to listen keyborad. First thread is OK.


DONE:
- change name to wifiscanner
- BUG: When -H13 option is used, program exit directly ?!
- Add compatibility with HostAP and CISCO driver.
- Add Max speed available for each detected client in summary
- All specific function to WLAN-NG driver are in one file
- Indicate the gap between channel read in packet and channel scanned
- Re-Add the capability to define speed scan
- Make an abstration layer to interface with different cards
- BUG: Do not count INVLD paquets when -M option is activated
- configure.in is used more correctly
- BUG! : When 255 devices is detected, WifiScanner hang UP ! :-((
- Add in configure the option to define libpcap location
- Use more correctly the autoconfigure procedure
- Create and use a real function to write debug infos, do clean exit and write all 
  of those information to a debug file
- Count WEAK IV, Crypted packets, display last IV
- BUG? Sometime STA FF:FF:FF:FF:FF:FF is appear ?!
- Add an option to become actif (can send packet to be proactif) (obsolete)
- Create function to make some mgmt packets (canceled)
- Can send desassociate packet to a STA, to discover the SSID when is obfuscated
    (AirJack do it for me :)
- Detect AirJack, and forged mgmnt packet (can be id by diff of TimeStamp)
  (it wad detected but not identified)
- BUG: sometime time is hh:mm:ss.1000, do a little correction :-)
- BIG BUG: debug addditionnal information field !! - SegFault (it found in LogPutOtherInformation function)
- Curses is better detected (option --with and --without work now)
- Iso-functionnality betwen curses version and non curses version
- BUG: when a card is turnning on, information are not correctly catch and updated
- DO refresh RealTime_WND only if sothink is writed and maximum one time per second
- BUG: Restrict to printable ASCII the SSID
- Make an ncurses interface or gtk
- Add an option to choice the max number of packet to read
- Analyse Probe Response (deduc channel of ad-hoc card)
- Do a better detection of type of client (problem with Probe request)
- Detect if Data packet is crypted (like airsnort)
- Create a function to collect information, analyse and do some correlation to give more information, like DS gateway, number of client, MAC @ of client in a network ...
- Do some cleanning in Wlan-NG integration (especially in .o)
- Detect if a prismII card is present
- Make some picture of detected network architecture (in .dot format of GraphViz)


# $Id: TODO,v 1.24 2003/07/25 11:22:48 poggij Exp $
 vim:tw=78:

