1 / 28

Автономный сетевой шпион . WiFi Pineapple usage in the wild

Автономный сетевой шпион . WiFi Pineapple usage in the wild. 21/08/2012 DCG #7812 г. Санкт-Петербург. by @ygoltsev @d0znpp @d_olex. Few words about myself. Security expert/ Penetration testing team. Community member. PHDays g00n. Editor. WiFi Pineapple. by.

andie
Download Presentation

Автономный сетевой шпион . WiFi Pineapple usage in the wild

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Автономный сетевой шпион.WiFi Pineapple usage in the wild 21/08/2012 DCG#7812 г. Санкт-Петербург by @ygoltsev @d0znpp @d_olex

  2. Few words about myself Security expert/ Penetration testing team Community member PHDays g00n Editor Defcon Russia (DCG #7812)

  3. WiFi Pineapple by http://cloud.wifipineapple.com/ Defcon Russia (DCG #7812)

  4. Functionality • Stealth Access Point for Man-in-the-Middle attacks • Mobile Broadband connectivity (3g/4g via USB) • Manage from afar with persistent SSH tunnels and meterpreter • Relay or Deauth attack with auxiliary WiFi adapter • Web-based management simplify MITM attacks • Easily concealed and battery powered • Expandable with community modules Defcon Russia (DCG #7812)

  5. Based on AP121U (http://bit.ly/NAvaq9) • 45 $ + Jasager (OpenWRT) (http://bit.ly/EgvNV) - free Defcon Russia (DCG #7812)

  6. AP121U • 93 x 70 x 26mm • 74g • IEEE 802.11b/g/n • 2x Ethernet • USB 2.0 • 400 MHz Defcon Russia (DCG #7812)

  7. Jasager - Linux (kernel 3.2) • hostapd(http://hostap.epitest.fi/hostapd/) hostapdis a user space daemon for access point and authentication servers. • Karma (http://www.digininja.org/karma/) Patch for hostapd. Set of patches to access point software to get it to respond to probe requests not just for itself but for any ESSID requested. Defcon Russia (DCG #7812)

  8. Equalness = Defcon Russia (DCG #7812)

  9. But • 93 x 70 x 26mm • 74g and 100 $... Defcon Russia (DCG #7812)

  10. money - not so important Defcon Russia (DCG #7812)

  11. Yammi!! Defcon Russia (DCG #7812)

  12. Usage • As a home router • As a tool for penetration testing • As an energy independent network spy Defcon Russia (DCG #7812)

  13. Some statistics • Location: Big Mall, Food Court • Wi-Fi SSID – ‘Ne_podkluchaytes_k_etoy_to4ke’ • Action: Respond to all probe request. Disconnect. Ignore MAC next time. Defcon Russia (DCG #7812)

  14. Over 9000…. P.S. Over 100 Defcon Russia (DCG #7812)

  15. More interesting ~ 189 minutes Defcon Russia (DCG #7812)

  16. More interesting • Mobile Juice pack ~ More than 6 hours Defcon Russia (DCG #7812)

  17. And what if? Defcon Russia (DCG #7812)

  18. Other stuff • More than 20 add-ons (modules) • Build in web/dns/ssh services • tcpdump/air*/ettercap/sslstrip Defcon Russia (DCG #7812)

  19. Cover story: fairy tale Defcon Russia (DCG #7812)

  20. Cover story: legendary legend Defcon Russia (DCG #7812)

  21. Cover story: box location Defcon Russia (DCG #7812)

  22. Cover story: box location Defcon Russia (DCG #7812)

  23. Cover story: packing the box • Pelican boxes – the best choice Defcon Russia (DCG #7812)

  24. Cover story: setting up environment • Setting up SSH tunnel • … • Do the stuff Defcon Russia (DCG #7812)

  25. Cover story: Catch me if you can • Wipe all shit! + = Defcon Russia (DCG #7812)

  26. Bonus track: Wipe video Defcon Russia (DCG #7812)

  27. Bonus track: Wipe Defcon Russia (DCG #7812)

  28. Thanks for your attention!@ygoltsev ygoltsev@ptsecuity.ru Defcon Russia (DCG #7812)

More Related