Premium Essay

Wireless Hacking Presentation

In:

Submitted By fsociety
Words 2941
Pages 12
Wireless Hacking – Haifux

Wireless Hacking
Edri Guy
Mar 04 ,2013

See-Security

Mar 04 2013 – Wireless Hacking - Haifux

Wireless Hacking – Haifux

DISCLAIMER
1 – The following discussion is for informational and education purpose only.
2 – Hacking into private network without the written permission from the owner is Illegal and strictly forbidden.
3 – Misused could result in breaking the law so use it at your own risk. See-Security

Mar 04 2013 – Wireless Hacking - Haifux

Wireless Hacking – Haifux

Introduction
WiFi Classes
Vulnerabilities
Attack

Overview


We're going to learn how WiFi (802.11) works



Start with terminology



Types



Vulnerabilities



Attacking them



Surprise demonstration of....:)

See-Security

Mar 04 2013 – Wireless Hacking - Haifux

Wireless Hacking – Haifux

Introduction
WiFi Classes
Vulnerabilities
Attack

Terminology




AP - Access Point
MAC – Media Access Control a unique id assigned to wireless adapters and routers.
It comes in hexadecimal format (ie 00:11:ef:22:a3:6a)

See-Security

Mar 04 2013 – Wireless Hacking - Haifux

Wireless Hacking – Haifux

Introduction
WiFi Classes
Vulnerabilities
Attack

Terminology




BSSID – Access Point's MAC Address
ESSID - Access Point’s Broadcast name. (ie linksys, default, belkin etc) Some AP’s will not broadcast their name,But
Airodump-ng can guess it.

See-Security

Mar 04 2013 – Wireless Hacking - Haifux

Wireless Hacking – Haifux

Introduction
WiFi Classes
Vulnerabilities
Attack

Gear - Antennas Dipole – Standar, Omni directional



Hyperbolic – Mushroom Shaped signal



Yaggi – Very directional (Japanese R&D)



Pringles – Improvised(Hacker Style) Yaggi



WindSurfer – Improvised hyperbolic



See-Security

Mar 04 2013 – Wireless

Similar Documents

Premium Essay

Computer Crime

...Cyber Crime Research Presentation by the Australian Institute of Criminology Dr Russell G Smith Principal Criminologist The Australian Institute of Criminology • Australia's national research and knowledge centre on crime and justice • Core funding from the Australian Government, with income for contract research from public and private sectors • Criminology Research Advisory Council representing all jurisdictions • Staff of 30 academic researchers and 25 support staff – total 55 Cyber crime research Research questions • • • • • • • • • • How are cyber crimes committed (e.g. credit cards, internet)? How many crimes are committed and what are the crime trends? Who commits them and why do people commit them? How much money is at stake, lost and recovered? How can such crime be reduced – by prevention or punishment? Online and desk-based reviews of books, reports and articles Legislative and case-law analysis, including sentencing research Consultations with business, government and the community Surveys of households, businesses, offenders and victims Analysis of media reporting of crime Research methods Dissemination of findings • Reports, books, articles, conference papers, roundtables, online, media Cyber crime concepts Organised Crime e.g. OMCGs Identity Crime Cyber Crime e.g. off-line crimes e.g. ID theft Internet Crime e.g. Offensive Content Phishing Financial Crime e.g. Home renovation scams A chronology of cyber crime Cloud...

Words: 1301 - Pages: 6

Free Essay

Review

...primary advantage? IDP: Working on one thing at a time. Advantage: One can text functions/expressions as they are implemented to make sure that have the desired affect. 4. Describe four types of Control Structures available in Alice. i) Do in order - actions occur in sequential order. ii) Do together - actions occur simultaneously. iii) If/Else - if a certain action occurs another action will be done, if a certain action does not occur then a different action will result. iv) Loop - an action will occur continuously for a certain number of times or infinitely. 5. Describe the differences between wired and wireless networks. Wired Networks: A network in which computers and other devices are connected to the network via physical cables. Ex// Found in; Homes, Schools, Businesses, and Government facilities. Wireless Networks: A network in which computers and other devices are connected to the network without physical cables. Data is typically sent via radio waves Ex 1// Found in;...

Words: 2735 - Pages: 11

Premium Essay

Is4560

...integrity has been maintained. IPSec 1) Set of protocols developed to support the secure exchange of packets IPv4 and IPv6 2) Operates at a low level in the OSI model (Layer 3) 3) Transparent security protocol for applications, users, and software OSI Model 7.Application 6.Presentation 5.Session 4.Transport 3.Network 2.Data 1.Physical OSI Model Layer 3-Network Handles the logical addressing and routing of traffic. First layer implemented within the software being used, specifically the OS. white-hat hacker security experts paid to find security holes in a system Black-hat hacker takes advantage of security vulnerabilities to gain unlawful access to private networks for personal gain Gray Hat Hackers Hackers in this class are “rehabilitated” hackers or those who once were on the “dark side" but are now reformed. For obvious reasons, not all people will trust a gray-hathacker. Ex: Kevin Mitnick Script kiddie An amateur hacker you lacks sophisticated computer skills. These are usually teenagers that don't use programs to hack into computer systems, instead use tools made by skilled hackers that makes them wreak the same havoc as professional hackers ethical hacking – Move security forward, find flaws with the intent of fixing – Use skills for defensive, preventive purposes – Promote proactive security: test before incidents happen - instead of fixing stuff afterwards – Stay within the legal limits Promiscuous Mode A mode on a NIC...

Words: 1515 - Pages: 7

Premium Essay

Business Ethics

...between public-key encryption and private-key encryption. List advantages and disadvantages of each encryption method. Explain which method you would use for e-mail sent from a field sales office to corporate headquarters. Assume that the e-mail regularly includes highly confidential information about upcoming sales opportunities. Answer: Responses will vary but should mention that public-key encryption, encodes messages by using two mathematically related numeric keys. Private-key encryption, encodes a message with one of several available algorithms that use a single numeric key, such as 456839420783, to encode and decode data. 4. In about 300 words, describe the security threats that a company could face if it implements a wireless network. Assume that the company occupies the six middle floors in a 12-story office building that is located in a downtown business area between two other buildings of similar height. Briefly explain how the company could reduce the risks it faces....

Words: 1430 - Pages: 6

Premium Essay

Computer Tricks

...EC-Council Press | The Experts: EC-Council EC-Council’s mission is to address the need for well educated and certified information security and e-business practitioners. EC-Council is a global, member based organization comprised of hundreds of industry and subject matter experts all working together to set the standards and raise the bar in Information Security certification and education. EC-Council certifications are viewed as the essential certifications needed where standard configuration and security policy courses fall short. Providing a true, hands-on, tactical approach to security, individuals armed with the knowledge disseminated by EC-Council programs are securing networks around the world and beating the hackers at their own game. The Solution: EC-Council Press The EC-Council | Press marks an innovation in academic text books and courses of study in information security, computer forensics, disaster recovery, and end-user security. By repurposing the essential content of EC-Council’s world class professional certification programs to fit academic programs, the EC-Council | Press was formed. With 8 Full Series, comprised of 27 different books, the EC-Council | Press is set to revolutionize global information security programs and ultimately create a new breed of practitioners capable of combating this growing epidemic of cybercrime and the rising threat of cyber war. This Certification: C|EH – Certified Ethical Hacker Certified Ethical Hacker is a certification...

Words: 61838 - Pages: 248

Premium Essay

Final Paper

...Riordan INDP Wide area network , Antivirus software , Firewall (computing) By trizey Oct 13, 2014 3651 Words 43 Views PAGE 14 OF 15 Running Head: INTEGRATIVE NETWORK DESIGN PROJECT 1 15 INTEGRATIVE NETWORK DESIGN PROJECT Integrative Network Design Project: Riordan Manufacturing May 26, 2014 Abstract Riordan Manufacturing is a plastic manufacturer providing services globally. Our product services include plastic beverage bottles, plastic fan components and custom plastic developments. The company consists of 3 production plants: Pontiac, Michigan, Albany, Georgia, and Hangzhou, China. Corporate headquarters and the research and development department are located in San Jose, California. Riordan is currently expanding and growing capabilities, to include upgrades in telecommunication systems for faster information travel amongst the 4 locations. Specifically, our location in Hangzhou, China is in dire need of upgrades. We've decided to relocate the entire Hangzhou location to a new facility in Shanghai, China. There are many factors and recommendations to consider as well as a chance to take advantage of implementing newer technology. The following project plan will outline the steps necessary to accommodate the telecommunication system transfer. Integrative Network Design Project Project plan The Information Technology Department has been tasked to plan, prepare and execute an entire network breakdown from Riordan Manufacturing's Hangzhou, China...

Words: 3887 - Pages: 16

Premium Essay

Instruction Plan

...Lovely Professional University,Punjab Format For Instruction Plan [for Courses with Lectures and Labs Course No CAP510 Cours Title COMPUTER NETWORKS Course Planner 15946 :: Gunit Kaur Lectures Tutorial Practical Credits 4 0 0 4 Text Book: 1 Behrouz A. Forouzan, Data Communication and networking, 4th Ed., Tata McGraw Hills year of publication 2006 Other Specific Book: 2 Andrew S. Tanenbaum,Computer Network 2nd Edition, PHI, Third Edition 1997 3 Comer E. Doughlas,Computer Networks and Internets, 2nd Ed., Pearson, 2000 4 W. Stallings,Data and Computer Communications, 7th Ed., Pearson, 2002. 5 Black U,Computer Networks-Protocols, Standards and Interfaces, PHI 1996 Other Reading Sr No Jouranls atricles as compulsary readings (specific articles, Complete reference) Relevant Websites Sr. No. (Web adress) (only if relevant to the courses) 6 http://authors.phptr.com/tanenbaumcn4/ 7 http://williamstallings.com/DCC6e.html 8 http://www.mhhe.com/forouzan/dcn4sie 9 http://en.wikipedia.org/wiki/Computer_network Salient Features Website on reference book Website on reference book website on text book Provides information on basic concepts of networking 10 http://compnetworking.about.com/od/basicnetworkingconcepts Networking Basics - Key Concepts in Computer Networking /Networking_Basics_Key_Concepts_in_Computer_Networking .htm 1 Approved for Spring Session 2011-12 11 http://www.cisco.com/web/learning/netacad/course_catalog/P Tools required to understand...

Words: 1513 - Pages: 7

Free Essay

Ict Terms

...* Revision:Complete Revision Guide to CCEA ICT Contents [hide] * 1 Complete ICT Revision Guide (CCEA) * 2 Knowledge of ICT Components * 3 INPUT DEVICES * 4 OUTPUT DEVICES * 5 STORAGE DEVICES * 6 INFORMATION AND DATA * 7 DATA STRUCTURE * 8 DATA CHECKING * 9 DATA PORTABILITY * 10 DATA NETWORKS * 11 INTERNET, INTRANET AND WWW * 12 TRANSMISSION, BACKUP, TELECONFERENCING * 13 APPLICATIONS * 14 SOFTWARE PACKAGES * 15 VIRTUAL REALITY IN TRAINING, ENTERTAINMENT * 16 COMPUTERS IN CONTROL (REAL TIME) * 17 ON-LINE SERVICES * 18 SECURITY AND PRIVACY OF DATA * 19 HEALTH AND SOCIAL ISSUES * 20 EMPLOYMENT * 21 ICT IN MUSIC, LEISURE, ENTERTAINMENT | ------------------------------------------------- Knowledge of ICT Components 1. DIGITAL : • Discrete values or binary digit 2. PROCESSOR: • Control center of the computer 3. RAM:- • Volatile (temporary storage), working storage, holds programmes currently in use, • Used for writing to and reading. • Measured in gigabytes 4. ROM:- • Instructions computer needs to start, • Non-volatile (permanent storage), can’t be changed, only read • Stores the Boot up/Start up program for the PC START UP STEPS:- • Power up • Read ROM chip • Connect all in and output devices • Load DOS from hard drive. • Load windows from hard drive 5. CACHE:- • Temporary storage, • Stores most frequently used instructions, • Is RAM memory that the computer microprocessor can access more quickly. • Volatile (128kb-512kb). 6....

Words: 6710 - Pages: 27

Free Essay

Bluetooth and Infrared Technology

...conversation was a chore. Now when you do any of these things, you see such advancements that come from two of the most popular technologies that have come to be. Bluetooth and Infrared, both have been around longer than most of us know. During my research for this paper, I learned that Infrared is where we get our remote controls for TV, for which all 80’s children are grateful, we no longer had to come inside to change the channels for our Moms. I have learned where these technologies came from, what they are used for, the people and companies that buy them, and what we can look forward to in the future. Bluetooth is a wireless technology that allows data to be exchanged over short distances using short wavelength radio transmissions. This technology is built into of plethora of products that allows them to exchange information over a wireless connection, or in basic terms, it allows one device to talk to another without wires. Two devices must be paired together in order to share. Several devices can be connected to a single Bluetooth, such as PDAs, mobile phones, laptops, computers, printers, controllers to game consoles and digital cameras. Bluetooth transmits data over radio waves, on frequency of 2.45 gigahertz. Bluetooth uses spread spectrum frequency hopping to keep signals from interfering with one another and this becomes very useful when connecting up to the eight device limit. Infrared is a band of light found on the electromagnetic spectrum. It is...

Words: 2492 - Pages: 10

Free Essay

E Learning

...applications in education . | 9 | What is information security ? | 10 | What are the methods of control in social E learning ? | 11 | What are the conclusion ? | 12 | References . | 13 | Appendixes . | Introduction to internet and social E learning. What is Internet ? The Internet is known to be as a global system of interconnected computers that are networked together and also  that uses the standard TCP/IP which is a protocol suite that works on serving millions and even billions of users throughout the world.  Internet is a network from the networks available that consists of huge amount of private, public, academic, business, and government networks, of local to global scope, that are linked by a broad array of electronic, wireless and optical networking technologies. The Internet is known to carry a very enormous range of information , resources and also services, as its famous examples : the inter-linked which is the HYPERTEXT documents of the world wide web famous by  (WWW) and the also to support emails. However ; people always do get mistaken about the point that the internet and the World Wide Web (www) are both the same terms , or are the same meanings . nevertheless; there is a very big difference between the two and people must know and understand this difference between both the terms. The internet and World Wide Web are known to be networks , however ; the internet is a network of the a big amount of different computers that are connected through...

Words: 2596 - Pages: 11

Premium Essay

Cyber Scam

...CYBER SCAM AND ITS EFFECTS November 27, 2011 SUBMITTED BY: FETALVER, FRANCIS VIOLETA, ROGENE CRIS SUBMITTED TO: MRS. MARY GRACE P. ALFANTA I Introduction Background of the Study Experts and law-enforcement officials who track Internet crime say scams have intensified in the past six months, as fraudsters take advantage of economic confusion and anxiety to target both consumers and businesses. Thieves are sending out phony emails and putting up fake Web sites pretending to be banks, mortgage-service providers or even government agencies like the Federal Bureau of Investigation or the Federal Deposit Insurance Corp. Cell phones and Internet-based phone services have also been used to seek out victims. The object: to drain customer accounts of money or to gain information for identity theft. Most scams are done by e-mail (Spam). They entice users to give them critical information like usernames, passwords, credit card information, or other types of account information. Most of these e-mails can easily be identified as fraudulent, by identifying a couple of general characteristics. If someone pretending to represent a company or organization contact you by e-mail to supply them with usernames, passwords or other critical information by e-mail, then you can be certain it’s fraudulent. Today we have something we call SSL (Secure Socket Layer). E-mail is one of the most un-secure methods to send user information and passwords. Most organizations...

Words: 2516 - Pages: 11

Free Essay

Ethical Hacking

...This page was intentionally left blank This page was intentionally left blank Hands-On Ethical Hacking and Network Defense Second Edition Michael T. Simpson, Kent Backman, and James E. Corley ———————————————————————— Australia • Brazil • Japan • Korea • Mexico • Singapore • Spain • United Kingdom • United States Copyright 2010 Cengage Learning. All Rights Reserved. May not be copied, scanned, or duplicated, in whole or in part. Due to electronic rights, some third party content may be suppressed from the eBook and/or eChapter(s). Editorial review has deemed that any suppressed content does not materially affect the overall learning experience. Cengage Learning reserves the right to remove additional content at any time if subsequent rights restrictions require it. This is an electronic version of the print textbook. Due to electronic rights restrictions, some third party content may be suppressed. Editorial review has deemed that any suppressed content does not materially affect the overall learning experience. The publisher reserves the right to remove content from this title at any time if subsequent rights restrictions require it. For valuable information on pricing, previous editions, changes to current editions, and alternate formats, please visit www.cengage.com/highered to search by ISBN#, author, title, or keyword for materials in your areas of interest. Copyright 2010 Cengage Learning. All Rights Reserved. May not be copied, scanned, or duplicated...

Words: 185373 - Pages: 742

Premium Essay

Security Analyst

...Contents 1. Introduction 2. Assessment Test 3. Chapter 1: Getting Started with Ethical Hacking 1. Hacking: A Short History 2. What Is an Ethical Hacker? 3. Summary 4. Exam Essentials 5. Review Questions 4. Chapter 2: System Fundamentals 1. Exploring Network Topologies 2. Working with the Open Systems Interconnection Model 3. Dissecting the TCP/IP Suite 4. IP Subnetting 5. Hexadecimal vs. Binary 6. Exploring TCP/IP Ports 7. Understanding Network Devices 8. Working with MAC Addresses 9. Intrusion Prevention and Intrusion Detection Systems 10. Network Security 11. Knowing Operating Systems 12. Backups and Archiving 13. Summary 14. Exam Essentials 15. Review Questions 5. Chapter 3: Cryptography 2 1. Cryptography: Early Applications and Examples 2. Cryptography in Action 3. Understanding Hashing 4. Issues with Cryptography 5. Applications of Cryptography 6. Summary 7. Exam Essentials 8. Review Questions 6. Chapter 4: Footprinting and Reconnaissance 1. Understanding the Steps of Ethical Hacking 2. What Is Footprinting? 3. Terminology in Footprinting 4. Threats Introduced by Footprinting 5. The Footprinting Process 6. Summary 7. Exam Essentials 8. Review Questions 7. Chapter 5: Scanning Networks 1. What Is Network Scanning? 2. Checking for Live Systems 3. Checking for Open Ports 4. Types of Scans 5. OS Fingerprinting 6. Banner Grabbing 7. Countermeasures 8. Vulnerability Scanning 9. Drawing Network Diagrams 10. Using Proxies 11. Summary 12. Exam Essentials 13. Review Questions...

Words: 71242 - Pages: 285

Premium Essay

Infosec Career

...help from many of my colleagues and friends in the field, I have endeavored to compile a comprehensive blog about starting an InfoSec career. This is a very lengthy blog broken into sections that may help people as parts or as a whole. We want you to succeed in our field. As always, please feel free to ask questions or leave comments / gripes / suggestions. Chapter 1: The Fundamentals  Unfortunately, for all the interminable hacking tool tutorials and security guides floating around the internet, many InfoSec job candidates haven’t grasped two fundamental concepts: * To hack something (or defend it from hacking), you must have a solid understanding of how that thing works. And, * InfoSec is not a career that can be put in a box once you go home from work or school. You must be passionate enough about the field to be continually learning and aware of quickly changing current events. If you want a career that you can forget about once you go home at 5:00 PM, InfoSec is probably not the right choice. The really intriguing thing about InfoSec and hacking in general is how they draw heavily from knowledge of all sorts of IT subjects. It’s difficult to understand attacks,...

Words: 11232 - Pages: 45

Premium Essay

Information Security Strategy and Architecture

...INFORMATION SECURITY STRATEGY AND ARCHITECTURE The path for risk management and the security panels consumed by a corporation are offered by information security strategy and architecture, which is very important to any companies and organizations. The security architecture would need to define the way that obligation would be accomplished in the numerous regions of the corporate. Furthermore, the security architecture must report past activities that have affected the company’s information properties. These incidences designate areas that may need larger safekeeping controls. Fresh intimidations may compel differences in the security design and supplementary controls. The safekeeping design must also integrate with the current technology substructure and postulate assistance in inaugurating the appropriate risk controls needed for the corporate to accomplish its business firmly. Its purpose is significant in proposing risk management for the foundation and for organizing the controls that diminish that hazard. A safety package is not an occurrence management guides those particulars what transpires if a security break is noticed. It takes a usual method that labels in what way part of corporation is tangled in the package. A decent safety package delivers the immense copy in what way to retain corporation's facts protected. It designates in what way the package regularly will be re-evaluated and rationalized, and when we will measure compliance with the program. It’s...

Words: 1510 - Pages: 7