kapil
The Kapil
join:2000-04-26
Chicago, IL |  Where...
| |
|
 
Vamp
5c077
Premium
join:2003-01-28
MD | more hackers by listing the name of the tool publicaly is only educating more people in hacking.. | |
|
 | 
korym
Go Wisp's
ExMod 1999-03
join:1999-12-23
Richmond, VA
clubs: | Re: more hackers Oops.  | |
|
| 
Sisqo
World Champs. Babe Who?
Premium
join:2002-08-14
Methuen, MA
| said by Vamp  :
by listing the name of the tool publicaly is only educating more people in hacking..
This stinks, so how can someone really protect themselves? Now does this apply only to users that are using hotspots?
--
No it's not a payphone, it's a portable phone! | |
|
| | TheNerdShow
join:2003-11-16
Anchorage, AK
3 edits | Re: more hackers This applies to home and business networks using popular wireless networking gear and using a form of encryption or password protection. The issue is moot since most people don't even bother to password protect their networks.
--
»thenerdshow.com »nerds.tk | |
|
| | 
gdead
@eisg.net
| Defensive Techniques Howdy,
So I've been involved in the Airsnarf project (I presented with Beetle at BlackHat Federal in DC a few months ago on the project). I've got a few things to say about this tool and the write-up about this.
First off, the type of attack that airsnarf carries out is not rocket science. It is not about breaking encryption but rather about tricking the client. The attack can be fully explained in about 5 minutes to a level that anyone with familiarity with 802.11 can fully understand it.
HOWEVER, not a single OS vendor, security tool provider, or driver vendor alert the user that this kind of attack is being performed. This is completely a layer 2 attack that should be caught by any wireless security tool. At the point of our talk at BH, nothing existed that would tell the user "hey, bad things are afoot... you should stop using this network". Airsnarf is a wakeup call to the vendors.
To that end, we also wrote the hotspot defense kit (HSDK). It's designed to alert the user that there is a layer 2 attack underway. It can be downloaded from the airsnaft page. Currently it only runs on OS X, but we are working on a windows port.
Finally, I am not a 3l337 blackhat hacker.  I coauthored 802.11 Security through O'Reilly. I also try to educate as many people as I can about wireless security through talks, mailing lists, etc.
later | |
|
korym
Go Wisp's
ExMod 1999-03
join:1999-12-23
Richmond, VA
clubs: | Re: Where... »airsnarf.shmoo.com/
Also check out Airsnort too. | |
|
cinnamon
How Smart Is Your Card?
Premium
join:2002-01-19
Tulsa, OK | Of course from The Shmoo Group. You are running Red Hat Linux 9.0 aren't you? | |
|
|
| 
aSic
application specific
Premium
join:2001-05-17
Wakulla, FL
clubs: | Re: Where... lol... the video card makes no difference at a command line..
...unless you're the wussy type that *NEEDS* X to do anything useful. | |
|
| | Mr_Stealth
Premium
join:2001-05-18
Lucasville, OH
clubs:
 ·RoadRunner Cable
 ·Verizon Online DSL
| Re: Where... lol
I just need to take the time to get it running on command line and then find the drivers
I'm fairly certain there are some working ones available
but I just tried to take the easy way out with Red Hat and Mandrake...got the through the install and gave it me a blank screen when it went to configure the video card
not like we really need to crack WEP keys...from what I have seen, most people don't have enough sense to use it anyway
--
Say goodbye to your privacy and security.
Say no to TCPA/TCG/NGSCB | |
|
|
|
|
