Presentation is loading. Please wait.

Presentation is loading. Please wait.

Автономный сетевой шпион. WiFi Pineapple usage in the wild 21/08/2012 DCG #7812 г. @d_olex.

Published byMadelynn Locklar Modified over 9 years ago

Similar presentations

Presentation on theme: "Автономный сетевой шпион. WiFi Pineapple usage in the wild 21/08/2012 DCG #7812 г. @d_olex."— Presentation transcript:

1 Автономный сетевой шпион. WiFi Pineapple usage in the wild 21/08/2012 DCG #7812 г. Санкт-Петербург by @ygoltsev @d0znpp @d_olex

2 Few words about myself Defcon Russia (DCG #7812)2 Security expert/ Penetration testing team Community member PHDays g00n Editor

3 WiFi Pineapple Defcon Russia (DCG #7812)3 http://cloud.wifipineapple.com/ by

4 Functionality Stealth Access Point for Man-in-the-Middle attacks Mobile Broadband connectivity (3g/4g via USB) Manage from afar with persistent SSH tunnels and meterpreter Relay or Deauth attack with auxiliary WiFi adapter Web-based management simplify MITM attacks Easily concealed and battery powered Expandable with community modules Defcon Russia (DCG #7812)4

5 Based on AP121U (http://bit.ly/NAvaq9)http://bit.ly/NAvaq9 -45 $ + Jasager (OpenWRT) (http://bit.ly/EgvNV)http://bit.ly/EgvNV - free Defcon Russia (DCG #7812)5

6 AP121U 93 x 70 x 26mm 74g IEEE 802.11b/g/n 2x Ethernet USB 2.0 400 MHz Defcon Russia (DCG #7812)6

7 Jasager - Linux (kernel 3.2) -hostapd (http://hostap.epitest.fi/hostapd/)http://hostap.epitest.fi/hostapd/ hostapd is a user space daemon for access point and authentication servers. -Karma (http://www.digininja.org/karma/)http://www.digininja.org/karma/ Patch for hostapd. Set of patches to access point software to get it to respond to probe requests not just for itself but for any ESSID requested. Defcon Russia (DCG #7812)7

8 Equalness Defcon Russia (DCG #7812)8 =

9 But 93 x 70 x 26mm 74g and 100 $... Defcon Russia (DCG #7812)9

10 money - not so important Defcon Russia (DCG #7812)10

11 Yammi!! Defcon Russia (DCG #7812)11

12 Usage -As a home router -As a tool for penetration testing -As an energy independent network spy Defcon Russia (DCG #7812)12

13 Some statistics Location: Big Mall, Food Court Wi-Fi SSID – ‘Ne_podkluchaytes_k_etoy_to4ke’ Action: Respond to all probe request. Disconnect. Ignore MAC next time. Defcon Russia (DCG #7812)13

14 Over 9000…. P.S. Over 100 Defcon Russia (DCG #7812)14

15 More interesting ~ 189 minutes Defcon Russia (DCG #7812)15

16 More interesting Mobile Juice pack ~ More than 6 hours Defcon Russia (DCG #7812)16

17 And what if? Defcon Russia (DCG #7812)17

18 Other stuff More than 20 add-ons (modules) Build in web/dns/ssh services tcpdump/air*/ettercap/sslstrip Defcon Russia (DCG #7812)18

19 Cover story: fairy tale Defcon Russia (DCG #7812)19

20 Cover story: legendary legend Defcon Russia (DCG #7812)20

21 Cover story: box location Defcon Russia (DCG #7812)21

22 Cover story: box location Defcon Russia (DCG #7812)22

23 Cover story: packing the box Pelican boxes – the best choice Defcon Russia (DCG #7812)23

24 Cover story: setting up environment Setting up SSH tunnel … Do the stuff Defcon Russia (DCG #7812)24

25 Cover story: Catch me if you can Wipe all shit! + = Defcon Russia (DCG #7812)25

26 Bonus track: Wipe video Defcon Russia (DCG #7812)26

27 Bonus track: Wipe Defcon Russia (DCG #7812)27

28 Thanks for your attention! @ygoltsev ygoltsev@ptsecuity.ru Defcon Russia (DCG #7812)28

Download ppt "Автономный сетевой шпион. WiFi Pineapple usage in the wild 21/08/2012 DCG #7812 г. @d_olex."

Similar presentations

SensMax People Counting Solutions Visitors counting makes the most efficient use of resources - people, time and money, which leads to higher profits in.

SensMax People Counting Solutions Visitors counting makes the most efficient use of resources - people, time and money, which leads to higher profits in.
© 2011 Rainforest Automation, Inc.. 2 ● Rainforest introduction ● Product overview: EMU™, RAVEn™ ● Partner solutions ● Prepay solution ● STB opportunity.

© 2011 Rainforest Automation, Inc.. 2 ● Rainforest introduction ● Product overview: EMU™, RAVEn™ ● Partner solutions ● Prepay solution ● STB opportunity.
Meraki Mobile Device Management

Meraki Mobile Device Management
The Free IT Management App & Community. What Do I Have? How Do I Keep Track of Everything? Is Everything Working? How Do I Fix IT? IT Admin What IT Pros.

The Free IT Management App & Community. What Do I Have? How Do I Keep Track of Everything? Is Everything Working? How Do I Fix IT? IT Admin What IT Pros.
Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software 2014-11-14.

Internet of Things with Intel Edison Presentation Paul Guermonprez Intel Software
Man in the Middle Paul Box Beatrice Wilds Will Lefevers.

Man in the Middle Paul Box Beatrice Wilds Will Lefevers.
1 Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall.

1 Copyright © 2011 Pearson Education, Inc. Publishing as Prentice Hall.
SolidWorks UGM Yakima, WA. What Is DraftSight? Easy to use, professional grade, 2d CAD software Intuitive and Powerful Best of all… It’s FREE !!!

SolidWorks UGM Yakima, WA. What Is DraftSight? Easy to use, professional grade, 2d CAD software Intuitive and Powerful Best of all… It’s FREE !!!
CSEE W4140 Networking Laboratory

CSEE W4140 Networking Laboratory
Wireless Hotspots. What is a hotspot? A hotspot is a place with a high-speed internet connection and wireless connectivity provided by one or more active.

Wireless Hotspots. What is a hotspot? A hotspot is a place with a high-speed internet connection and wireless connectivity provided by one or more active.
CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino

CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino
 Any unauthorized device that provides wireless access  Implemented using software, hardware, or a combination of both  It can be intentional or unintentionally.

 Any unauthorized device that provides wireless access  Implemented using software, hardware, or a combination of both  It can be intentional or unintentionally.
300Mbps n Dual Band Wireless USB Adapter

300Mbps n Dual Band Wireless USB Adapter
WiMAX Presented By Ch.Srinivas Koundinya 118T1A0435.

WiMAX Presented By Ch.Srinivas Koundinya 118T1A0435.
Spiceworks Overview Enterprise Business Group Jul-2015.

Spiceworks Overview Enterprise Business Group Jul-2015.
300Mbps Dual Band Wireless VDSL2 Router VDR-300NU.

300Mbps Dual Band Wireless VDSL2 Router VDR-300NU.
DWR-730 Sales Guide HSPA+ Mobile Router MSPBU Susan Lin

DWR-730 Sales Guide HSPA+ Mobile Router MSPBU Susan Lin
The Opportunity of WISP’s Mark Levetzow. Topics  WISP’s and how they work  IEEE standards and radio frequency.  Equipment  Good/Bad points about WISP’s.

The Opportunity of WISP’s Mark Levetzow. Topics  WISP’s and how they work  IEEE standards and radio frequency.  Equipment  Good/Bad points about WISP’s.
Hotspot Express Product Presentation. Agenda 1.Product Perspective 2.Managed Services 3.Conclusion.

Hotspot Express Product Presentation. Agenda 1.Product Perspective 2.Managed Services 3.Conclusion.
Sales guide for HSUPA 3G VPN router DWR-555 WRPD, Amy Wang, 4 th Oct., 2010 D-Link Confidential D-Link Confidential.

Sales guide for HSUPA 3G VPN router DWR-555 WRPD, Amy Wang, 4 th Oct., 2010 D-Link Confidential D-Link Confidential.

Similar presentations

Ads by Google