Sign in to follow this  
Followers 0
Bi0s

WiFi help

26 posts in this topic

Ok. I'll admit it, I'm a total noob at wifi.

So i get a wifi card for christmas. Free! can't beat that. It's a linksys, not the best but it works.

Install net stumbler, and off i go. I find nothing. Nothing at all in my home town.

then tonight, I venture off to the city. and walla, I didn't spend much time there, but i found 4 AP's.

attatched is the NetStumbler file if anyone wats to see it.

I'd really like to know where to go next . I've never used wifi before, so I'm sorta lost. But I have to say I LOVED it! seeing those networks pop up it was sweet!

20030110185252.ns1

20030110185252.ns1

20030110185252.ns1

20030110185252.ns1

0

Share this post


Link to post
Share on other sites

bi0s, I am totally with you. Almost the same circumstances, except you are a day ahead of me. I installed netstumbler Wednesday and was going to give it a shot this weekend. Unfortunately, I have a cisco card and it is not supported by netstumbler. I am hoping it still might work, under winXP it says that some cadrs may work even though they are listed as unsupported.

Also, just as another test, I brought along my USB wifi adapter. It may look dumb, hanging off the side of the lappy, but if it works, I dont give a fukk! :)

0

Share this post


Link to post
Share on other sites

TERRORIST!

I still have cat5 (and cat5e) all over my room. Wish I could get a free WiFi card :( .

0

Share this post


Link to post
Share on other sites

ok, my cisco card worked! Well, at least here in my office, it picked up the WAP right next to it. <_ but that is a start at least i know it works>

I guess the next step is to start with a little ghettodriving here in my neighborhood.

0

Share this post


Link to post
Share on other sites

I still have cat5 in my house too. I don't have a WAP.

I just got the card. (bTW: They also say at netstumbler's site that my card isn't supported, but it works.)

I just installed it, and went out looking

0

Share this post


Link to post
Share on other sites

Cisco cards are great for ghettodriving. And feend, I've got a couple of spare wi-fi- adapters available for a very nominal fee.

0

Share this post


Link to post
Share on other sites

Sorry, Bi0s, I totally missed the point of your post. Of course obtaining an IP and becoming an internal node on these networks, and subsequently exploring said networks, would be wrrr..wrr...wrrong.

You could then mess with WEP, get your card working on different flavs of Linux, mess with different antennas, etc., etc. (And of course share your experiences.)

edit: Speaking of antennas, how's my pigtail progressing, mut3?

0

Share this post


Link to post
Share on other sites

I went on my first ghettodrive today. My friend drove to lunch to a restaurant only a few blocks away, so I figured, why not bring along teh lappy?

I got about a dozen hits from my job to lunch. Once I learn how to interpret them, I will post them here.

0

Share this post


Link to post
Share on other sites

I hopped online with someone elses bandwidth yesterday! What a RUSH!

Ok, now, the next step is to find a WEP decryption product that works on XP :( (I don't wanna hear it, I use it for work). I know that there a few for linux. I can try to port one over to windoze, but I do not know if I am up to the task.

Anyone have any suggestions or alternative WEP tools for XP?

0

Share this post


Link to post
Share on other sites

There is a distribution of Ethereal available for the Windows platform at http://www.ethereal.com/distribution/win32/ that should allow you to decrypt WEP encrypted packets. As it is a wired network traffic manager, you will need to locate a wireless sniffer that saves ethereal compatible logs though (I use kismet, which is linux only at the moment) to get any use out of it though...

There is a JAVA WLAN sniffer at http://www.chocobospore.org/projects/mognet/ that could be used in windows...

Another option would be to use one of those CD booting versions of linux that are available (http://www.wardriving.com has a distro of demolinux specifically designed to be used for WLAN sniffing). I haven't tried it yet though, so I cant say how useful it would be for you.

0

Share this post


Link to post
Share on other sites

I've been listening to RFA for a while now and have recently been poking around the forums here at DDP and learning BUTTLOADS of new things. I've have finally taken the leap into Wi-Fi. Now I know how heroin junkies must feel after their first time.....I'm hooked. I bought an Airport card for my PowerBook yesterday, slapped it in and had my first ghetto/wardriving expedition today using the Mac OS X version of NetStumbler, called (originally enough) MacStumbler. It works VERY well. I live in a fairly tech-savvy city so I figured I would find a fair amount of APs. But I was not prepared for the huge amount of unprotected networks that I found within just a few blocks of my house. I was totally floored.

BAD SECURITY AWARD OF THE DAY from today's exepdition...goes to the resident of 1881 9th Ave. This person had their HOME ADDRESS as the name of their network. I stopped in front of their house, got a very strong signal and was able to hop on their Internet connection, check some auctions on Ebay, yadda yadda yada. What a rush it was. But, not really wanting to sit in front of this persons house too long, I moved on. In less than two hours of driving around town I discovered 36 networks, only 7 of which were password protected and two of those were Starbucks/T-Mobile APs. The local COMPOOSA and Sam's Club both had networks I could access from the parking lot. And if your local mall has an Apple Store, then you have access to an open and free 802.11b AP. All Apple Stores have 802.11b networks set up and they are publicly promoted as being open for public use.

So, one question I have: since it is so easy to access someone elses Internet connection, how easy is it for them to trace back to see who's been sniffing around their network? Other than their router log showing an IP address being assinged to an additional machine, how/if could an outside wireless access be tarcked down?

Thanks to RFA and DDP for giving the the infoformation to fuel my interest in the W-Fi world. Next will be tackling Linux/Unix.

0

Share this post


Link to post
Share on other sites

Hmm they might see an appearance of a newly added machine like you mentioned and look at the ARP cache to see which machine was using that IP address. I don't know how they would trace you but they might just put a block on that MAC address so you couldn't obtain an IP address on their network again.

Found a script you might want to look at on how this is done (using linux iptables) script.

0

Share this post


Link to post
Share on other sites

MAC address will always give you away. However, thgere are some cards that let you spoof your MAC address as well!

ADn teh MAC address is only dangerous if it is publicly known. Once you drive away, how will they trace it to your system? IF you have a DELL system or something that comes preshipped with a card, they probably have the MAC address catalogues in their database. But over the shelf, is little risk.

Like Feend said, they can block your MAC address, but they would have to catch and notice you doing something really bad to do that.

0

Share this post


Link to post
Share on other sites

I guess they could like review their CCTV tapes to see cars stopping by in their parking lot then driving off. Then if they logged your MAC address they could match it to your wireless card since they are unique. I seriously doubt anyone would bother though if all you were doing is using they internet etc, and if they are logging MAC addresses, they’d likely know how to secure their access points properly…

0

Share this post


Link to post
Share on other sites
And the MAC address is only dangerous if it is publicly known.  Once you drive away, how will they trace it to your system?  IF you have a  DELL system or something that comes preshipped with a card, they probably have the MAC address catalogues in their database.  But over the shelf, is little risk.

That's what I would think. I mean, if some people don't know enough to turn on WEP and they use their street address for their SSID, then I doubt they would even know what a MAC address is let alone look to see if there is a foreign address on their network. But, I could be wrong.

The thought of a computer company having a huge database of the MAC address of factory installed cards that they could cross reference with serial number and owner information is a little scary and would make me think twice before buying a machine with a preinstalled card.

Butn then again, even if the card was preinstalled with the computer, it's nothing to swap out that card with another one with a new MAC Address. My card was an add on (paid for in cash, natch) so I can't imaging that there would be much chance of a MAC Address being traced to me. But you've all given me some good info to digest.

I have to correct my first post. It wasn't Sam's Club that I found the open network that I got onto, it was BJ's Wholesale Club. For some reson I always get the two confused. Sam's Club had big signs in their parking lot indicating there were security cameras in use. Even though there was on open network there, I just kept on driving. It was right next door to the COMPOOSA so I stopped there.

A couple of the APs I stumbled on indicated the vendor as Agere-Lucent. Even though I could apparently hop onto these networks, these were the only places I couldn't get Internet access with. Any clues why? Might they be internal office networks with no direct oustide access? One was in an small industrial park, so I'm wondering if that one was some sort if inter-building file sharing network.

0

Share this post


Link to post
Share on other sites

Maybe their net access goes through a proxy or something - Therefore possibly try scanning the entire subnet ie 10.0.0* / 192.168.0.* etc for a proxy. Or just watch the network and see how / if any other computers have net access / where their send their “GET” requests.

0

Share this post


Link to post
Share on other sites

Thanks, dual. Mucho glad to be here. I'll check out using proxychains as time permits.

0

Share this post


Link to post
Share on other sites

OK, this is too cool. I have my wi-fi card for less than 72 hours and I've already gotten someone to HAND me a password for a college network.

I'm on the website design committe for the local chapter of the graphic designers association that I'm a member of. We're working on a redesign of our website and we got together to discuss some problems with the course of our project. We always meet at one of the local colleges as one of our members is a coordinator there and books us rooms with projector screens and access to the school's T1 line. So, I cheerfully volunteered to bring my laptop for us to use to go over our beta site, hoping they would have a wireless network I could sniff out. Running MacStumbler I found out they did. So I casually asked the guy who works at the college, "Is there a wireless network I'd be able to use? My ethernet port has been acting flaky." I didn't want him to know that I knew there was a wi-fi network, and wanted to see what he would say. So, he says, "Sure, but I'll have to give you a password." And no, it wasn't 1234 but just as bad: nameofschool2003

I asked if it was his personal password, and he said no, its the one everyone in his department uses. Oy vey. If I were him, I would have asked to type the password in myself rather than give to someone esle. But hey, he offered it willingly.......So, I'm hoping to have time to stop by the school later this week to see if they change the password. Something tells me they probably won't, but who knows.

So, another nOOb question, since I haven't had any time to research much on the wi-fi thang: do protected wi-fi networks NOT require a userID, and just require a password? My home network uses an Apple Airport Extreme Base Station as the AP, and the WEP setup only requires a password. The network at the school tonight (vendor showed as 3Com) only required a passowrd. I would think that like, for example, using SSH or FTP where you need both a user ID and password that WEP would be he same. Would the lack of a user ID be something that makes WEP reletively easy to crack (from what little I've read that's the indication I get)? Just curious, as in all my experience dealing with computers and securing information, I have never come across a security system that requires only a password. But now that I think of it, my cable router only requires a password.....

*sigh* so much to learn, so little time........it makes my head all swooshy

0

Share this post


Link to post
Share on other sites

It depends on how they are set up. At my univ, you authenticate once to access the internet...Period. So the password you are referring to is probably simple authentication through the router out to the internet. You would probably need a password to get to the internet from a wired system just the same as a wireless system. If they have a different 'hop' in between the WAP and the "outside acesss/internet router" you may be authenticating on it (the hop) instead of the internet router. But of course it depends on the setup.

0

Share this post


Link to post
Share on other sites
It depends on how they are set up.  At my univ, you authenticate once to access the internet...Period.   So the password you are referring to is probably simple authentication through the router out to the internet.  You would probably need a password to get to the internet from a wired system just the same as a wireless system.  If they have a different 'hop' in between the WAP and the "outside acesss/internet router"  you may be authenticating on it (the hop) instead of the internet router.  But of course it depends on the setup.

Interesting. Hopefully I'll get a chance to get back over thre this week to explore around a bit. I'd aslo like to try and get onto their wired network and see if it's set up the same, but as you said, it depends on the setup.

0

Share this post


Link to post
Share on other sites
OK, this is too cool. I have my wi-fi card for less than 72 hours and I've already gotten someone to HAND me a password for a college network.

[snip]

So, I'm hoping to have time to stop by the school later this week to see if they change the password. Something tells me they probably won't, but who knows.

I went back to the college this morning, and have to say I'm impressed. They changed the password. Go fig.

Next time we have a comittee meeting I'll have to see about trying the wired network. I think my Ethernet port will be "fixed" by then. ;)

0

Share this post


Link to post
Share on other sites
I went back to the college this morning, and have to say I'm impressed. They changed the password. Go fig.

not necessarily... Were you at the same location? You could be authenticating off of a different WAP than the original one. Maybe each one has a different password.

If you were in the same placce, you are probably right. Although I am surprised at such a quick change. Usually, they seldom change the passwords.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0