Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Hacking. Wireless LANs and footprinting Wireless LANs l see basic conceptsbasic concepts Linux versus Windows footprinting l you need a card.

Published byDaisy York Modified over 9 years ago

Similar presentations

Presentation on theme: "Wireless Hacking. Wireless LANs and footprinting Wireless LANs l see basic conceptsbasic concepts Linux versus Windows footprinting l you need a card."— Presentation transcript:

1 Wireless Hacking

2 Wireless LANs and footprinting Wireless LANs l see basic conceptsbasic concepts Linux versus Windows footprinting l you need a card that works with the tools l the tools need to make the card work in promiscuous mode (sniffing) l many cards and few chipsets

3 Building a war-drive kit Footprinting : locating APs l passive: listening to AP broadcasts l active: transmitting client beacons in search of AP responses Equipment l cards (802.11.b, 11.g) -- choose the software first l Antennas (e.g. HyperLink Tech)HyperLink Tech l GPS Software (Windows) l NetStumbler (set SSID to ANY) active mode. Counter- measure: set AP not to reply to probes. NetStumbler

4 More in footprinting software Windows l StumbVerter: download. Uses MapPoint to plot data from NetStumbler StumbVerterdownloadMapPoint Linux l Kismet : both war-drive and sniffer. Uses passive mode (counter-measures difficult). Kismet l GPSMap : comes with Kismet and plots AP locations in maps, using ImageMagick, but is command-line intensive.ImageMagick l Dstumbler (requires kernel patch), better in BSD. Dstumbler

5 Wireless Scanning and Enumeration Packet-Capture and Analysis l Review of sniffing: FAQ, tools, concept.FAQtoolsconcept l Linux support not covered (too technical) l Ethereal is a good tool in Linux, we used in Hacking Linux. Ethereal l Windows: OmniPeekOmniPeek l requires custom driver, commercial but can download demo l channel scanning, decryption of WEP (needs key) l provides a Peer Map view of hosts found What you are looking for l SSID -- APs respond to a client ANY SSID with their SSID, and you are in if no username and password required. l MAC access control - OmniPeek maps MAC addressesmaps MAC addresses l WEP - war-drive tools indicate if used (e.g. NetStumbler).NetStumbler

6 Gaining access in 802.11 SSID l easy to setup from the ward-drive information l just create a profile MAC Access Control l use the sniff information to identify valid MAC addresses. l spoof the MAC address of your wireless card (Read this article for counter-measures).article WEP (Wired Equivalent Privacy) l protects data from eavesdropping, not authentication l uses key between AP and card transmissions l brute-force, key and packet cracking off-line (e.g. Aircrack-ng)Aircrack-ng EAP (Extensible Authentication Protocol) Methods EAPMethods l A client finds an AP and is prompted for a username and password l Keys are create dynamically after login

7 Counter measures Some basic ideas: l recommendations to secure a WLAN.secure a WLAN l suggestions to minimize WLAN threats.minimize WLAN threats l overview of weakness and solutions for WLANs (old, but good).weakness and solutions l some commercial solutions: AirDefense, AirTight, SmartPass.AirDefenseAirTightSmartPass State-of-the-art solutions l WPA and WPA2: review and WindowsreviewWindows l Using a Radius server for authenticationRadius server l The IAS Radius service in Windows.IAS Radius l FreeRadius home page and tutorialhome pagetutorial 4 Some WLAN security guides. George Ou guide NIST 800-53 draft

Download ppt "Wireless Hacking. Wireless LANs and footprinting Wireless LANs l see basic conceptsbasic concepts Linux versus Windows footprinting l you need a card."

Similar presentations

Ethical Hacking Module XV Hacking Wireless Networks.

Ethical Hacking Module XV Hacking Wireless Networks.
ITEC 6324 – Assignment Seven IEM Baseline Activity / Tool (Netstumbler, Kismet, Airopeek & AirSnort. Name: Victor Wong Instructor: Dr Crowley.

ITEC 6324 – Assignment Seven IEM Baseline Activity / Tool (Netstumbler, Kismet, Airopeek & AirSnort. Name: Victor Wong Instructor: Dr Crowley.
Wireless LAN Security Understanding and Preventing Network Attacks.

Wireless LAN Security Understanding and Preventing Network Attacks.
Wireless technology hit the American market more than 60 years ago during World War I and World War II Today its the IEEE 802.11 standard, also known.

Wireless technology hit the American market more than 60 years ago during World War I and World War II Today its the IEEE standard, also known.
Hacking Exposed 7 Network Security Secrets & Solutions

Hacking Exposed 7 Network Security Secrets & Solutions
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
Wireless LAN Security  Setup & Optimizing Wireless Client in Linux  Hacking and Cracking Wireless LAN  Setup Host Based AP ( hostap ) in Linux & freeBSD.

Wireless LAN Security  Setup & Optimizing Wireless Client in Linux  Hacking and Cracking Wireless LAN  Setup Host Based AP ( hostap ) in Linux & freeBSD.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
Final Presentation Presented By: Gal Leibovich Liran Manor Supervisor: Hai Vortman.

Final Presentation Presented By: Gal Leibovich Liran Manor Supervisor: Hai Vortman.
WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.

WiFi Security. What is WiFi ? Originally, Wi-Fi was a marketing term. The Wi-Fi certified logo means that the product has passed interoperability tests.
Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake.

Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake.
Man in the Middle Paul Box Beatrice Wilds Will Lefevers.

Man in the Middle Paul Box Beatrice Wilds Will Lefevers.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
Wireless Insecurity.

Wireless Insecurity.
Handoff Delay for 802.11b Wireless LANs Masters Project defense Anshul Jain Committee: Dr. Henning Schulzrinne, Columbia University Dr. Zongming Fei, University.

Handoff Delay for b Wireless LANs Masters Project defense Anshul Jain Committee: Dr. Henning Schulzrinne, Columbia University Dr. Zongming Fei, University.
Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.
How to Secure a Home Wi-Fi S. Roy. Acknowledgement In preparing the presentation slides and the lab setup, I received help from Professor Simon Ou Professor.

How to Secure a Home Wi-Fi S. Roy. Acknowledgement In preparing the presentation slides and the lab setup, I received help from Professor Simon Ou Professor.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—3-1 Wireless LANs Understanding WLAN Security.

© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—3-1 Wireless LANs Understanding WLAN Security.
Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.

Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.

Similar presentations

Ads by Google