◀ Back to Investigation Private -- Not For Distribution

CTRS Network Security -- Systems & Toolkit

Field equipment, monitoring stations, and operational guides

Robert Cleaver (w/ AI pair programming partner Claude Code by Anthropic)

Forensic Analysis Guides

Field Guide
Kali Forensic Capture Guide
15-section field guide for WiFi forensic capture. Installation, adapter setup, monitor mode, passive recon, attack model identification, physical device location, evidence preservation.
Open guide ▶
 Defense
WiFi Attack Mitigation Guide
Defense and remediation strategies. WPA3 migration, CSA protection, BSSID pinning, channel management, SIP phone hardening, rogue AP detection.
Open guide ▶

Station Guides & Troubleshooting

Blue Team
Mobile Station -- Blue Team
Investigation and monitoring build for laptop deployment. Passive capture, real-time analysis, evidence collection.
Open guide ▶
 Red Team
Mobile Station -- Red Team
Penetration testing and network hardening build. Active testing, vulnerability assessment, security validation.
Open guide ▶
 Infrastructure
Remote Monitoring Station
Persistent 24/7 monitoring station on work desktop. Automated capture, remote access, alerting.
Open guide ▶
 Troubleshooting
Kali Linux Troubleshooting
20-section debug guide. ALFA adapter detection, monitor mode, Bluetooth, WiFi hotspot, HDMI, USB power, persistence, NetworkManager conflicts, Wireshark, and emergency recovery.
Open guide ▶

Interactive Tools & Scripts

Analysis
Log Upload & Analysis Kit
Interactive log analysis tool. Upload AP event logs, auto-detect attack patterns, synchronized disconnects, immune devices, burst clusters, and ghost events. Compare multiple log files.
Open tool ▶
 Script
Grid Capture Script
Kali Bash script for grid-based signal mapping. Walk cell-by-cell capturing data to build signal strength heatmap and locate planted attack devices. Auto-generates CSV and summary.
Download script ▶
 Viewer
Capture Data Viewer
Browse all monitor mode capture sessions by location and time. View detected APs, stations, signal strength, probed SSIDs, and anomalies. Auto-generated from capture pipeline.
Open viewer ▶
 Intake
Data Intake Tool
Submit AP logs (paste or drag-drop) and capture files from the field. Auto-detect format, apply time offsets, generate corrected files. Stores submission history locally.
Open tool ▶

Part of the CTRS WiFi Incident Investigation (March 2026)

CTRS / Firstline Road Solutions -- Confidential