will a WLC recognize some injections by an hacking tool (ex. Airsnort oder Aircrack) via the IDS basic feature? I'm sorry for this question, but at the moment I'm not able to test it.
What else would be necessary for this issue?
Thanks a lot and regards
IDS is very sensitive so it may detect any attacks from outside.
We dont discuss hacking methods, but most likely this will be detected on the network as doing knowned wrong operations when associating to the AP.
There will for example be a auth / de auth flood while it tries to get the IV from the headers.