Embed Size (px)
Citation preview
TIMISOARA WIRELESS SURVEY
About me• Cristian Vat• @deathy
• Java developer
• Random interests in networking/security.
WIRELESSIt’s everywhere
Wireless Security?
Encryption• Open is Open
• WEP is broken since a long time, yet still somewhat used
• WPS is usually broken
WPA/WPA2 saves us ?• Algorithm is sound• Still could be bad implementations• PSK is widest used, same problem as with any password:
• Dictionaries• Bruteforce
• Just capture one 4-way handshake passively• Everything else offline• No forward secrecy
Economics of GPU-based cracking• DEFCON19, Robert "Hackajar" Imhoff-Dousharm, SanDisk Corporation,
“Economics of Password Cracking in the GPU Era”• Personal benchmarks:
• old MacBook Pro i7: 3700 hashes/s (on all 4 cores)• old GPU Nvidia GeForce GTX 560: 29K hashes/s• new GPU Nvidia GeForce GTX 980 Ti: 265K hashes/s
• With recently released oclHashCat2: 282K hashes/s
• Or you can use online services...
10 characters minimum• On my personal consumer GPU:
• 8 characters lower-case: 8.5 days• 10 characters lower-case: 15.8 years
WHY CARE?
From China to Auchan with Love
Secure but leaking information• Phones• Mobile hotspots• *-PC_Network• Printers• TVs (who thought this was a good idea?)
• Where can I find myself a nice 40” Samsung TV?
HP Printers, oh my• Saw 156 HP Printers with wireless enabled.
• 93 of them had completely open wireless networks. That’s 60% completely open.• But it’s just a printer.
• No. It’s a linux device on or near your network.• Print/Scan/Fax logs• Maybe joined to your domain• It can probably run DOOM• DEFCON 19: From Printer To Pwnd: Leveraging Multifunction Printers During
Penetration Testing
Wardriving like it’s 2004
https://www.flickr.com/photos/shawnville/2114500402/
Warwalking in 2015
https://www.flickr.com/photos/robino/543890501/
Warwalking in 2015• Hardware needed: Android phone• Software needed: there are lots of apps for that• Wigle:
• https://wigle.net/• https://play.google.com/store/apps/details?id=net.wigle.wigleandroid• Website and android app. • Website currently holds 227,870,055 networks• Global stats: https://wigle.net/stats• Android app saves to a SQLite database
Data set• Gathered almost only in Timisoara during 2015• Wireless Networks (APs) seen: 36 184• Location database records: 170 712
• BSSID, SSID, GPS coordinates (best and all), signal strength, network advertised capabilities
• Have good ideas? Talk to me.
Current Stats
•https://maiebanatulfruncea.com/TimisoaraWirelessSurvey/
QUESTIONS?
