How rediculous is the 802.11 craze..?

***roswell1329*** · October 11th, 2002, 07:04 PM

Originally posted here by Xenon
I just remembered. Wanna play a good joke on a script kiddie???

Search Google for FakeAP.

This is a program that uses PrismII cards to generate thousands of fake AP beacons. Netstumbler will pop up thousands of access points!!

I tested this thing out on a friend of mine. The look on his face was priceless.

FakeAP is not a viable security option though (security through obscurity)

~Xe

Yes. Kismet is phenomenal. Definatly the standard for Linux warXing.

This may not be an option for security (nothing should ever be a substitute for good security), but it's a good deterrent. If you're looking at millions of available networks as a skidiot only to find that most of them are bunk, would you sit there mindlessly plunking away at each network looking for a good one, or would you move on to a more readily available target?

I also wonder if this technology (FakeAP) could be utilized to construct some honeypots. Kind of like WAP minefields that could communicate with other attempted networks to triangulate the origin of the skidiot and report the vulnerable location in long/lat coordinates?

***Syini666*** · October 11th, 2002, 07:16 PM

I'm not so sure how long FakeAP would be effective, because someone could write a program to systematically scan, so they could just set up a laptop and let it figure out which ones are real networks and which are the decoys. But it would still make it difficult even with an automated program.

**Xenon** · October 11th, 2002, 07:41 PM

Yes I agree with Syini666. I am not a good programmer at all but I would figure a script could be written that would run through the AP's sending an ACK type of package (however 802.11 works) and could eliminate the fake ones quickly.

~Xe

***hogfly*** · October 11th, 2002, 07:45 PM

unless you set up real ones that looped to the localhost IP, and were firewalled for all outgoing connections to them...then you could spend a while playing with something that was real, gave real signals, but didn't let you get anywhere.

**doktorf00bar** · October 11th, 2002, 10:46 PM

Kismet on my Sharp Zaurus. Drool. 'nuff said

***hogfly*** · October 11th, 2002, 10:50 PM

you get gpsdrive on it too ???

**doktorf00bar** · October 11th, 2002, 10:59 PM

The serial cable is hard to come by and expensive to boot so I ain't got it yet. I have a beautiful garmin GPS that'd handle that end of the buisness just lovely

***hogfly*** · October 11th, 2002, 11:03 PM

now since the original intent of this was not to start a wardriving mania...I want to talk about securing methods..

What do people know of EAP, PEAP, and LEAP ? are any methods of these available for linux or non windows XP SP1 computers or cisco ?

**v_squared_over_** · October 12th, 2002, 01:55 AM

You should check out the latest 2600 quarterly. Vol. 19, # 2. There's a good article on 802.11b, WEP, active and passive scanning, and equipment. Quite informative.

v_squared_over_r

***hogfly*** · October 12th, 2002, 04:43 AM

2600 sucks and is nothing compared to what it used to be... the single most informative paper on it is that one by idefense, in my opinion anyways....

Anyone have any info based on my last post about auth methods ?

Thread: How rediculous is the 802.11 craze..?

Thread Tools

Display

802.11b

Posting Permissions