TIMISOARA WIRELESS SURVEY About me Cristian Vat deathy

  • Slides: 18
Download presentation
TIMISOARA WIRELESS SURVEY

TIMISOARA WIRELESS SURVEY

About me • Cristian Vat • @deathy • Java developer • Random interests in

About me • Cristian Vat • @deathy • Java developer • Random interests in networking/security.

WIRELESS It’s everywhere

WIRELESS It’s everywhere

Wireless Security?

Wireless Security?

Encryption • Open is Open • WEP is broken since a long time, yet

Encryption • Open is Open • WEP is broken since a long time, yet still somewhat used • WPS is usually broken

WPA/WPA 2 saves us ? • Algorithm is sound • Still could be bad

WPA/WPA 2 saves us ? • Algorithm is sound • Still could be bad implementations • PSK is widest used, same problem as with any password: Dictionaries • Bruteforce • • Just capture one 4 -way handshake passively • Everything else offline • No forward secrecy

Economics of GPU-based cracking • DEFCON 19, Robert "Hackajar" Imhoff-Dousharm, San. Disk Corporation, “Economics

Economics of GPU-based cracking • DEFCON 19, Robert "Hackajar" Imhoff-Dousharm, San. Disk Corporation, “Economics of Password Cracking in the GPU Era” • Personal benchmarks: • old Mac. Book Pro i 7: 3700 hashes/s (on all 4 cores) • old GPU Nvidia Ge. Force GTX 560: 29 K hashes/s • new GPU Nvidia Ge. Force GTX 980 Ti: 265 K hashes/s • • With recently released ocl. Hash. Cat 2: 282 K hashes/s Or you can use online services. . .

10 characters minimum • On my personal consumer GPU: 8 characters lower-case: 8. 5

10 characters minimum • On my personal consumer GPU: 8 characters lower-case: 8. 5 days • 10 characters lower-case: 15. 8 years •

WHY CARE?

WHY CARE?

From China to Auchan with Love

From China to Auchan with Love

Secure but leaking information • Phones • Mobile hotspots • *-PC_Network • Printers •

Secure but leaking information • Phones • Mobile hotspots • *-PC_Network • Printers • TVs (who thought this was a good idea? ) • Where can I find myself a nice 40” Samsung TV?

HP Printers, oh my • Saw 156 HP Printers with wireless enabled. • •

HP Printers, oh my • Saw 156 HP Printers with wireless enabled. • • 93 of them had completely open wireless networks. That’s 60% completely open. But it’s just a printer. • • • No. It’s a linux device on or near your network. Print/Scan/Fax logs Maybe joined to your domain It can probably run DOOM DEFCON 19: From Printer To Pwnd: Leveraging Multifunction Printers During Penetration Testing

Wardriving like it’s 2004 https: //www. flickr. com/photos/shawnville/2114500402/

Wardriving like it’s 2004 https: //www. flickr. com/photos/shawnville/2114500402/

Warwalking in 2015 https: //www. flickr. com/photos/robino/543890501/

Warwalking in 2015 https: //www. flickr. com/photos/robino/543890501/

Warwalking in 2015 • Hardware needed: Android phone • Software needed: there are lots

Warwalking in 2015 • Hardware needed: Android phone • Software needed: there are lots of apps for that • Wigle: • • • https: //wigle. net/ https: //play. google. com/store/apps/details? id=net. wigleandroid Website android app. Website currently holds 227, 870, 055 networks Global stats: https: //wigle. net/stats Android app saves to a SQLite database

Data set • Gathered almost only in Timisoara during 2015 • Wireless Networks (APs)

Data set • Gathered almost only in Timisoara during 2015 • Wireless Networks (APs) seen: 36 184 • Location database records: 170 712 • BSSID, GPS coordinates (best and all), signal strength, network advertised capabilities • Have good ideas? Talk to me.

Current Stats • https: //maiebanatulfruncea. com/Timisoara. Wireless. Survey/

Current Stats • https: //maiebanatulfruncea. com/Timisoara. Wireless. Survey/

QUESTIONS?

QUESTIONS?