Hacking

What is AirPWN?

AirPWN? is a tool that first debuted at DefCon 12.

AirPWN? acts as a man in the middle tool for wireless networks. It takes advantage of the time that a website takes to respond to normal page requests. In that lag time, it can inject its own content onto the wireless channel of an access point. For instance, you may request a page from wikipedia.org that takes, round-trip, approximately 125 ms. If someone near you is running the airpwn tool, it will see your request and immediately respond with its own web page and/or content because it is much closer and takes much less time to respond. When your computer receives the data, it will think the original request was answered and display the page. When the real web page is presented, it will either ignore the page, or display some of the content. AirPWN? can be configured to carefully craft responses so that your browser will ignore the real web content as it would with html comments.

In this article i walk you through installing AirPWN on Ubuntu Linux 10.04 and 10.10.

Read on for more.

Aircrack-ng

Aircrack-ng is a set of tools for auditing wireless networks. These tools can recover 802.11 WEP and WPA-PSK keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools.

Last year i walked you through installing the Aircrack-ng suite on Ubuntu Linux.

We will be installing and using just part of the Aircrack-ng suite, airmon-ng. This will allow us to put our wireless card into "Monitor" mode.

Wicrawl

Wicrawl is a simple wi-fi (802.11x) Access Point auditor with a simple and flexible plugin architecture. The plugins allow us to find out useful information about an AP so we don’t have to manually check each access point. Plugins are implemented for existing common tools, and new plugins can be written in any language. Wicrawl is able to use multiple cards, and eventually will be able to use multiple computers.

The goal is to automate the tedious task of scanning wi-fi access points for interesting information. This can be a useful tool for penetration testers looking to “crawl” through massive numbers of APs looking for interesting data. Plugins will be everything from DHCP and nmap to aircrack or hooks to move a motorized directional antenna around.

The guys over at Midnight Research Labs stopped development back in 2007. Being a bit out-dated, it wouldn't compile on the latest Ubuntu without a couple tweeks. I replaced the entire source code in the Aircrack-ng plugin folder with the latest SVN (as of this post). I also had to add a header file to the discovery folder to help it compile.

I went ahead and tared up my folder with all of these edits so you can easily compile it on the latest Ubuntu Linux (9.10 as of this post).

In this video tuorial, i walk you through installing Aircrack-ng as well as Wicrawl.

Video tutorial of my last article on Installing AirPWN.

Read on for the text version.

SSL Strip

This tool provides a demonstration of the HTTPS stripping attacks that was presented at Black Hat DC 2009. It will transparently hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map those links into either look-alike HTTP links or homograph-similar HTTPS links. It also supports modes for supplying a favicon which looks like a lock icon, selective logging, and session denial.

In this article i will walk you through installing SSLstrip along with ettercap and perform a MITM attack.

Wii Consoles that are setup with WiiConnect24 will notice their blue notification light pulsating this morning. Nintendo released their latest update, version 4.2 today. The update is said to "provide behind-the-scenes fixes that will not affect features but will improve overall system performance".

If you have softmodded (homebrew channel) your Wii, DO NOT UPDATE.

What is the Aircrack-ng suite?

Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools. In fact, Aircrack-ng is a set of tools for auditing wireless networks.

In this tutorial I will show you how to install Aircrack-ng on Ubuntu Linux 9.04 Desktops and Servers.

Read on for more.

Rouge DHCP Server?

Rogue DHCP servers are those DHCP servers that are misconfigured or unauthorized unknowingly or those that are configured with a malicious intent for network attacks. Either be the case the impact on clients that are serviced by the rogue DHCP servers are critical. That is the clients would experience network access problems due to rogue DHCP server leasing incorrect IP addresses & incorrect options to the client. Security threats are caused when malicious user with rogue DHCP server can spread bad network parameters and thereby sniff the traffic sent by the clients. There are also certain Trojans like DNS-changing that uses a compromised machine in the network to pollute the network by installing rogue DHCP servers on the machine. Rogue detection tool is a GUI tool that checks if there are any rogue DHCP servers in the local subnet.

Following are the features with this tool:

1. The tool can be run one time or can be scheduled to run at specified interval.

2. Can be run on a specified interface by selecting one of the discovered interfaces.

3. Retrieves all the authorized DHCP servers in the forest and displays them.

4. Ability to validate (not Authorize in AD) a DHCP server which is not rogue and persist this information

5. Minimize the tool, which makes it invisible. A tray icon will be present which would display the status.

What is AirPWN?

AirPWN? is a tool that first debuted at DefCon 12.

AirPWN? acts as a man in the middle tool for wireless networks. It takes advantage of the time that a website takes to respond to normal page requests. In that lag time, it can inject its own content onto the wireless channel of an access point. For instance, you may request a page from wikipedia.org that takes, round-trip, approximately 125 ms. If someone near you is running the airpwn tool, it will see your request and immediately respond with its own web page and/or content because it is much closer and takes much less time to respond. When your computer receives the data, it will think the original request was answered and display the page. When the real web page is presented, it will either ignore the page, or display some of the content. AirPWN? can be configured to carefully craft responses so that your browser will ignore the real web content as it would with html comments.

In this article, I will walk you through installing AirPWN? on Ubuntu Linux Desktop and Servers.

Note: This article assumes that you have the tools installed and you have a supported wireless card! If not, you're on your own trying to figure out how to put your card into monitor mode.

Read on for more info.

Fear not my fellow tech whores! Let me introduce you to my little friend, Kon-Boot.

I recently used the "Twilight hack" to add the Wii Homebrew Channel before I upgraded to the Wii Menu version 4.0u.

[NOTE: you can install the HBC on Wii Menu 4.0u using the new banner bomb technique!]