Wardriving with the Titan

[lettcco]

not too familiar with wardriving...will wififofum gets the wep key from any AP?

[rainfreak]

Quote:

Originally Posted by lettcco

not too familiar with wardriving...will wififofum gets the wep key from any AP?

No, it will just tell you whether the access point is running WEP, WPA, etc. There is software out there to "get" the WEP/WPA key for you, but I don't suggest that you try it. It is illegal in most states now..

[CopyCounsler]

for all those that are interested in testing their own WEP/WPA password strengths, here is the famous tool used by countless many to decrease their own network password crackability:

http://aircrack-ng.org/doku.php

Now here's where it gets interesting. It runs on linux, right? So lets say you have a linux os on your phone... hmm...

They have windows versions "ported" as well for those of us who are to cheap to build a linux box. (heh)

- Copy

[[sammich]]

You can also multibot windows and linux...

I prefer Ubuntu over the other versions

[khruska]

I appreciate the posting.

Now if I can just get my 5dbi gain antenna to hook up to my Titan I'll be rocking the house like we did back in the day when it took an hour to set up your war!driving rig.

[ryanbg]

It's so sad how people automatically consider you a thief and a criminal if your wardriving. I came across an article where a man was arrested just for wardriving, because the police were gray in this area. How can it be illegal if you don't connect and are transmitting your SSID?

[rainfreak]

The issue comes in that you have the equipment needed to illegally use a private network, residential or business, and that is really all that they need as far as proof goes. Kind of like when a teenager carries a screwdriver in his back pocket while out walking around at 1:00am. The police just assume that the teenager is out to steal cars with that screwdriver and just having it is enough to get arrested, with or without a prior record. For the record, the charge for that in Ohio is "carrying criminal tools", and I am pretty sure that it is relevant in most states.

I am not saying that I agree with it completely, but the police have to try and generally cover all the bases. So if you are out wardriving and are just "curious", to them it looks more like you are looking for a network with little or no security that you can exploit it. Unfortunately there are a lot of people who are using wardriving for illegal means, so the police are forced to assume that you are too.

Again, I am not saying that it is right. But I can say that if someone is wardriving near my home or business, I hope that the police will stop them, and arrest them. Because I want my personal and business network secure and, let's face it, WEP and WPA aren't exactly secure...

[CopyCounsler]

just make your router 1. non-dhcp 2. not use 192.168.1.1 - use 192.168.69.69 or something like that instead.

then you have to 1. set each ip address manually. 2. set the gateway to 192.168.69.69.

security by obscurity. then wpa/wep is just another layer of protection.

there are numerous ways to skin that cat. If you get your network hacked, that's another story. but if you don't have any layer of protection, you get what you deserve.

Copy

[rainfreak]

Quote:

Originally Posted by CopyCounsler

just make your router 1. non-dhcp 2. not use 192.168.1.1 - use 192.168.69.69 or something like that instead.

then you have to 1. set each ip address manually. 2. set the gateway to 192.168.69.69.

security by obscurity. then wpa/wep is just another layer of protection.

there are numerous ways to skin that cat. If you get your network hacked, that's another story. but if you don't have any layer of protection, you get what you deserve.

Copy

That works to a point, but most good software for wardriving gives you the IP address, subnet and gateway of the access points as they are found. So while in a general sense you are absolutely right, it does little against wardriving with the proper software tools.

I personally do the following at home:

IP Address of access point: 10.30.2.3/22
Gateway for access point: 10.30.1.2/22
DHCP on access point is disabled
DHCP on router is disabled
SSID broadcast on access point is disabled
WPA is utilized as it is much better than WEP (though not great in and of itself)

But I still see connection attempts via wireless on my access point several times daily. And I live on a main street with a church next to me, so it is likely not to be an accident as the neighbor on the other side has wireless, the next one doesn't have a laptop or any wireless devices.

Basically, for the noob, security by obscurity works. But for someone who is really trying to protect their data, no matter how much you try or what you do, wireless is a scary concept.

Unless you can run your wireless network on a seperate VLAN and not allow traffic from the wireless network to your internal network (only use wireless for Internet traffic), and implement radius authentication, you really aren't protecting your internal network at all.

And even if they do hack your access point and only use your Internet connection, what happens when they download child pornography from your IP address and it is logged by a federal agency? Or pirated music, software, movies, etc...

[CopyCounsler]

well I forgot to mention the MAC address allow list.

But yes you can spoof a MAC address.

----

And there isn't one piece of software out there that can give me the ip addresses of a router if the wep/wpa password is not provided. you show me that.

----

And turning off the broadcast is smart. there shouldn't be anyone tagging your setup.

----

if someone hijacks your secured internet the way you have it set up, you definitely know the guy. Because that type of person is more than likely not want to waste time and to find an unsecured network, no?

Copy