Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake."— Presentation transcript:

1 Wardriving 7/29/2004 The “Bad Karma Gang”

2 Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake

3 What is War Driving? Definition: Driving through a neighborhood with a wireless- enabled notebook computer in search for wireless access points (APs) Driving through a neighborhood with a wireless- enabled notebook computer in search for wireless access points (APs) Purpose: Analyze Wireless LANs & show which APs are open Analyze Wireless LANs & show which APs are open Product: Wireless Access Point Map Wireless Access Point Map Origin: “ War dialing ” “ War dialing ”

4 Some Results of War Driving -Source: Wigle.Net- -WiFiMaps.com- Nui’s House Access point WWWD4 (World Wide War Drive) June 12-19, 2004 300,000 APs submitted worldwide Wireless Access Point Maps Nowel & Budge WiGLE

5 Legal Background ActivityLegalityLaw Scan access points Not illegal Intentional access of a computer without authorization Illegal Computer Fraud and Abuse Act Alteration of communication on ISP network without authorization Illegal Electronic Communications Protection Act Interception of communications as they’re going through the air Illegal Wiretap Act

6 Footprinting Address range, namespace acquisition Scanning Find promising points of entry Anatomy of a Hack (Hacking Exposed 4 th Edition) Enumeration Find user accounts and poorly protected shares Gaining Access Informed attempts to access target Escalating Privilege Gain complete control of system War driving Process Pilfering Gain access to trusted systems Covering Tracks Hide system privileges Creating Back Doors Ensure ability to regain access at will Denial of Service Create ability to disable target LegalIllegal

7 Possible Risks War driving = not illegal Beyond war driving = illegal Encryption key cracking Encryption key cracking Free internet access Free internet access Identity exposure and theft Identity exposure and theft Network resource utilization Network resource utilization Data theft Data theft Denial-of-service Denial-of-service Other hacking activities Other hacking activities Confidentiality Integrity Availability

8 GPS Mouse Notebook computer Power Cable GPS Software Display 802.11 network sniffing software (e.g. Netstumbler) Text to speech software "new network found. ssid is thd- wireless. channel 6. network open." Typical Wardriving Setup

9 Netstumbler Screenshot

10 For the thrifty and adventurous wardriver… Build a “Cantenna” http://www.turnpoint.net/wireless/cantennahowto.html

11 Protection of Wireless Networks Use Wired Equivalency Privacy (WEP) Network card encrypts “payload” using RC4 cipher Receiving station decrypts upon arrival Only works between 802.11 stations. No longer applies once payload enters wired side of network Users should change default password and Service Set Identifier Users should change keys often Physically locate access point to avoid “spilling” signal off premises Install hardware or software firewall Use passwords for sensitive folders and files Users should perform wardriving test

12 Experiment: War Driving Seattle * Doonesbury, December, 2002.

13 Wardriving: Been there, done that? * “War Kayaking”, Summer, 2003.

14 War Driving Experiments

15 Experiment 1: Open door Opened SBG1000 wireless Internet gateway Meant to disable 16 bit encryption Discovered traffic in logs when home computers off

16 Experiment 2: Tools of the trade + + = Access

17 My house Results: Access Gained

18 Results 29 Available networks in 2 short hours All available from parked car on crowded streets Colorful names for wireless routers hotstuff, red libre, eatshitanddie hotstuff, red libre, eatshitanddie most use manufacturer name most use manufacturer name Only 3 required a key of any kind

19 The “Bad Karma Gang” -Social Engineer Alumni Relations- Discussion

Download ppt "Wardriving 7/29/2004 The “Bad Karma Gang”. Agenda Introduction to Wardriving The Tools of Wardriving Wardriving Green Lake."

Similar presentations

Securing A Wireless Home Network. Wireless Facts Range about 50 - 200 feet from access point Security anyone can eavesdrop on an unsecured wireless network.

Securing A Wireless Home Network. Wireless Facts Range about feet from access point Security anyone can eavesdrop on an unsecured wireless network.
Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.

Computer viruses Hardware theft Software Theft Unauthorized access by hackers Information Theft Computer Crimes.
LANs and WANs. 2 Chapter Contents Section A: Network Building Blocks Section B: Wired Networks Section C: Wireless Networks Section D: Using LANs Section.

LANs and WANs. 2 Chapter Contents Section A: Network Building Blocks Section B: Wired Networks Section C: Wireless Networks Section D: Using LANs Section.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Configuring your Home Network Configuring your Home Network Jay Ferron ADMT, CISM, CISSP, MCDBA, MCSE, MCT, NSA-IAM.

Configuring your Home Network Configuring your Home Network Jay Ferron ADMT, CISM, CISSP, MCDBA, MCSE, MCT, NSA-IAM.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 13: Planning Server and Network Security.
Simple ways to secure Wireless Computers Jay Ferron, ADMT, CISM, CISSP, MCSE, MCSBA, MCT, NSA-IAM, TCI.

Simple ways to secure Wireless Computers Jay Ferron, ADMT, CISM, CISSP, MCSE, MCSBA, MCT, NSA-IAM, TCI.
Security+ Guide to Network Security Fundamentals

Security+ Guide to Network Security Fundamentals
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Security Awareness Chapter 5 Wireless Network Security.

Security Awareness Chapter 5 Wireless Network Security.
Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)

Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
Wireless Security. Objective: Understand the benefits of a wireless network Understand security risks Examples of vulnerabilities Methods to protect your.

Wireless Security. Objective: Understand the benefits of a wireless network Understand security risks Examples of vulnerabilities Methods to protect your.
Chapter 7 Securing your Wireless Network (WIFI). Synopsis What is a wireless home network? What damage can a wireless network snoop do? Who are the snoopers?

Chapter 7 Securing your Wireless Network (WIFI). Synopsis What is a wireless home network? What damage can a wireless network snoop do? Who are the snoopers?
December 17, 2002 1 Wi-Fi Mark Faggiano GBA 576. December 17, 20022 Purpose of the Project  I hear Wi-Fi, WLAN, 802.11 everywhere  What does it all.

December 17, Wi-Fi Mark Faggiano GBA 576. December 17, Purpose of the Project  I hear Wi-Fi, WLAN, everywhere  What does it all.
Hacking and Network Defense. Introduction  With the media attention covering security breaches at even the most tightly controlled organization, it is.

Hacking and Network Defense. Introduction  With the media attention covering security breaches at even the most tightly controlled organization, it is.
Wireless Networking. Wi-Fi or 802.11 Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.

Wireless Networking. Wi-Fi or Uses radio waves (like cell phones, tv and radio). Just like wired networking except without the wires. A hot spot.
Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.
Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.

Security Overview. 2 Objectives Understand network security Understand security threat trends and their ramifications Understand the goals of network.
Wireless Security Focus on Encryption Steps to secure a Wi-Fi Network.

Wireless Security Focus on Encryption Steps to secure a Wi-Fi Network.

Similar presentations

Ads by Google