Just wondering if there's some application out there which can crack the password of a WIFI network in seconds. It's really hard to find an open wifi network when you're out in the city, 99% of them has password. If this is not allowed here, delete the thread.
I tihnk the WEP key encrypts the wifi information, so you have to know the password to decypher the information. Youd need a lot of processing power to crack it...millions of combinations etc. And I tihnk that any apps which existed would be seriously illegal and taken off by the mods.
To put an educational direction to this thread ...
Here are some reasons why WiFi Access Points should be secured from unauthorized use:
Bandwidth usage toll
Protect confidential information that may be on the personal network
Protect private networks from unauthorized access/use
Here are some reasons why one should not access secured WiFi Access Points:
In some countries/regions, it is prohibited by law
Security logging is likely enabled since the Access Point was intentionally secured
Confidential information on your device may be compromised if the WiFi Access Point is being used as a "honeypot"
Here are a few guidelines that I recommend to folks who use WiFi:
Don't conduct confidential activities over Access Points that one does not own or manage (Public or Private)
Keep wireless sessions to a minimum so as to avoid having the device compromised
Be wary of connecting a device to any unknown Access Point
Treat all WiFi similar to having unprotected sex
Cheers,
Related
Guys.....
I find lot of prepaid wifi network in hotels, restaurants, etc. in order to join the network, I must register with user name & password that will be given by the provider if I paid certain amount of money.
I just wondering is there a way to hack prepaid wifi?
thanks
You will need this l33t t00l: m0n3y.
I remember this was discussed long time ago...
as I recall, you can't do that using WM phone, neither a windows laptop..etc.. you need Linux OS and some special tools...and even though it's possible, it takes very long time 1-2 hour to break the password (according to the encryptions of course)
try to search the forum, you might end up with that thread
I cannot believe how often companies just use the same username and passwords.
You actually crack some networks in 40 mins.
using something like CommView® for WiFi PPC or Airscanner Mobile Sniffer can help in that process.
None of the above techniques will work since the companies use a form of IP Tables.
THE only way is to tunnel with DNS using something like NSTX, but its very alpha. (Easiest way to test if technique works is by trying to ping a website and see if it returns the correct IP address)
The technique is there, just needs a good coder and some time..
Tunneling over DNS. That's clever. But all the commercial hotspots I've ever used resolve every IP address to the login/order form page when you aren't already logged in. That is, you can't tunnel through DNS.
The methods that take "40 minutes" to crack the encryption are talking about something completely different - finding the WEP or WPA keys for a network that has security enabled. It wouldn't be useful for prepaid hotspots, as they generally do not use WEP or WPA encryption. Instead, they let you associate and get an IP quite easily. Then they direct you to the credit card order form.
One method that can be used on some of them is to spoof the MAC address and IP address of an authorized, logged in client. However, you will quite literally steal their internet access, as that client will be knocked off the network. I've done this myself but it doesn't seem to work anymore on any of the big networks like T-Mobile (in Starbucks).
Best bet is trying to find a vulnerability in one of the web applications running on the server. All the layer 2/3 stuff is pretty well locked down.
fluxist
They will resolve but wont actually PING, thats due to IP Routing Tables.
There is no way to crack wifi password for pocket pc and laptop centrino main board. And you need special wirelless hardware. Must be pentium 4 or above.. Airsniffer and other proğrams can helpful. its change on WEP or WAP protocol. WEP is the most hard. You can find how to crack on forums and videos on youtube
^ That is rubbish.
Centrino or not, it has nothing to do with it.
Its all down to the wireless card and whether or not it accepts mode monitor/master.
Its WPA not WAP and WPA is far harder than WEP due to having to be brute forced, unlike WEP which has the well known RC4 weakness.
I think he is referring to the fact that one cannot do promisc mode on PPC, so they can never collect the packets to try and compute a WEP key. And also the fact that on Centrino Wifi cards (2200BG, et al.) the linux drivers cannot due packet injection in promisc mode. However, this limitation is overcome in some recent patched drivers. See the Backtrack linux live cd (www.remote-exploit.org/backtrack.html) for details.
fluxist
I don't think there is a hacking tool for ppc which is too very effective or complete...
All so called cracking tools for ppc are buggy little ****s...
Aircrak ng is best for PCs ... em waiting 4 a version of it on ppc...
Hmmmm.... That would be very interesting if they came out with an application to crack WEP and WPA networks I could see WEP being cracked but not sure about WPA since WEP is extremely easy to crack usually in about 10 minutes or less depending on the strenght of the signal, but WPA is much more difficult since it requires a brute force attack. I'm not so sure that our phones are capable of that.
You are waisting your time thinking of this with a phone as the Colleting of packets will take so long and PPC don't support packet injection and you would be limited to WEP
Get your self a net book that supports CUDA then you stand a chance Google CUDA Brute Force
i can buy a pin to accesses it but i cannot sharing it via hotspot how can i share it
Hi, thanks in advance for help.
I have someone leeching off my Wifi net, who seems to be able to 'break-in' no matter how i secure the WiFi net.
Anyone know of any free Windows Mobile software that will show signal strength of Wifi CLIENTS nearby. Not Access Points, but CLIENTs.
I want to go find this guy.
thanks
Hi there!
If you got an "leecher" on your network I would recommend you to start your search on your router.
You didn't provide any specs, how did you find out that someone is on your network?
Next question, have you changed both, router pass and wlan key?
Are u using weak encryption (wep)?
Whats about your mac-filter?active?
I would guess you've got an dhcp server on your network/router... go there and check the dhcp releases. Any suspicious entrys? You should know all the devices listed there. If you have found a IP you don't know, ping it and check if its alive (those packages can be ignored by the host), try to access it via smb, you could also try a demo of languard and try to read out details like os, user, owner...
I'm almost shure you can't use your wm device to locate a client of a network, unless you can switch your wlancard to ap-mode and he connects to you ^^
Nope, need signal strenght reader if poss.
Thanks for the comment, but I'm pretty security savvy, and have done most of what you recommend.
I actually can't believe he's still getting in when I've locked down so tight.
Anyway, it's a CLIENT signal strengh program that I'm trying to find.
Rogue clients are malicious wireless client devices that either try to gain illegitimate access to your WLAN or try to disrupt normal wireless service by launching attacks. There are numerous ready-to-launch wireless attack tools freely available on the net. Many of them are open sourced and work pretty well with most Wireless client cards. This turns any curious mind to professional hacker in minutes. Many do it simply for the pleasure of being able to disturb someone remotely. All these developments force WLAN administrators to give a second look at any wireless client that is misbehaving.
What means most of that what i recommended?
Did you actually change the router password AND the wlan key?
Sorry, I don't think that you can trace him with your mobile. as long as hes not connected to your mobilephones wireless network (wich requires your mobile wlan device to switch to ap-mode).
Forget about that.
Please tell us, why do you think somebody is on your network, how did you find out... whats the "evidence" for you that there is somebody.
I'd like to help u, but i need some further details to lock him out.
I hope you know that its just a matter of minutes to break a wep key. GPUs are used to decode it, which is damn fast!
So please provide more specs about your network.
Greetings
1: Use WPA instead of WEP.
WEP is crackable in a matter of seconds.
2: Assign access control/MAC filtering
3: Use your network in ad-hoc mode
Well, WPA is crackable too.
The person in question might change his MAC to yours and create collisions anyways
Can you be sure that he has really associated with your router. I have noticed some client/router combinations "apparently" associate but all traffic is blocked because they did not provide the right key.
As others say - use WPA WPA2 and use a strong (non dictionary) passphrase
get a computer that can run airodump or something similar.
run airodump with it set to the channel of you router - not in hopping mode as you will miss lots of packets.
Airodump will tell you the strength of the signal from his computer so if you have this on a laptop you can move around and possibly can an idea roughly where he is
Thank you, i will try Airodump
Thanks in particular Scote.
I didn't list the router config simply becuase I am confident it's pretty secure:
Router is a new Belkin N1
- 63 random char password from grc.com/passwords
- SSID is "netgear" even though its a Belkin : intention to mislead for access URL.
- WPA2-PSK AES encryption
- SSID not broadcasting
I didn't bother with MAC filtering, as I understand a good 'hacker' can spoof it : If this guy can get through WPA2 I would say he can probably MAC spoof.
My 'evidence', is that up to 3 unkown computers turn up on the 'Clients List', around 4 hours after I change the SSID/password : Each time.
I have 2 laptops, so I will try Airodump or maybe Backtrack (suggested elswhere) on these as a 'direction finder' based on signal strength.
Hmmm...I did read somewhere you can set a Kaiser to be an access point...
Thanks all
Yes you can.
Someone found his stolen Wii/mobile phone (don't remember which one) that way.
There was even an article on the net.
I am having difficulty connecting my device because my WiFi Network ID is hidden. Regardless, I am using WPA2-PSK could this be considered secure enough? Or must I hide it for security?
hi, as far as i know, 'hiding' the ssid is working that way, that your router is not broadcasting its ssid anymore. its more like to step into a room full of people and raise a sign 'im hidden so please ignore me', in the hope nobody is recognizing you . so its up to all other devices to obey or ignore the request from your router, but he is still visible anyhow. the only way to 'hide' your wlan from being seen by other devices is to switch it of.
regards mad
Have a read through the following WIKIpedia article:
http://en.wikipedia.org/wiki/Wi-Fi
The information presented is quite accurate and should give you some insights.
Also, keep in mind that many devices may fail to remain connected to a wireless network that has the SSID set to non-broadcast (aka hidden). As for security, there is no security when it comes to wireless. I know folks will "beg to differ", but rest assured, there is no security. All communication over wireless can be easily intercepted.
Here's some articles in case you want to read up.
Articles:
http://en.wikipedia.org/wiki/Wireless_security
http://en.wikipedia.org/wiki/Keystroke_logging
http://en.wikipedia.org/wiki/Computer_surveillance
http://en.wikipedia.org/wiki/Mobile_phone#Privacy
HTH,
hilaireg said:
Have a read through the following WIKIpedia article:
http://en.wikipedia.org/wiki/Wi-Fi
The information presented is quite accurate and should give you some insights.
Also, keep in mind that many devices may fail to remain connected to a wireless network that has the SSID set to non-broadcast (aka hidden). As for security, there is no security when it comes to wireless. I know folks will "beg to differ", but rest assured, there is no security. All communication over wireless can be easily intercepted.
Here's some articles in case you want to read up.
Articles:
http://en.wikipedia.org/wiki/Wireless_security
http://en.wikipedia.org/wiki/Keystroke_logging
http://en.wikipedia.org/wiki/Computer_surveillance
http://en.wikipedia.org/wiki/Mobile_phone#Privacy
HTH,
Click to expand...
Click to collapse
Hidden isn't even found in the articles.
@poetryrocksalot:
Not certain if you're agreeing or not; in case, have a look at Securing Methods in the first link I provided. The remaining links are articles detailing various methods and technologies that can be used to intercept various forms of wireless/emanations.
Cheers,
At home my Tablet hides behind a Router which has a built in firewall. But once I leave home and connect to the outside world I'm stepping outside my comfort zone. I've yet to learn about Tethering but that also leaves me open to the outside world.
So do I need to install a firewall and/or a malware detector?
Firewall? Nah, your tablet shouldn't have many listener services running which are vulnerable.
If you're worried about network security on foreign networks, I'd recommend you look into VPN connections from your tablet, which means all the traffic you send over that public network is encrypted and bad guys can't do that much with it.
Imho data security is a much bigger issue on mobile networks than malware exploits.
bump
See my post above your bump....
This might be a tough question to answer as I have already tried by contacting my ISP and I didn't get very far with their response. As a result of extensive ongoing use of smart phones and other devices, I have been forced to cut down on internet use for my kids. I felt the best way to do this is by controlling their access to our home wifi. I am the only one who has a hard-wired device in the house. My ISP has a modem login site where I can locate individual devices and block access anytime. The problem is that my 15-year old son has found a way to bypass this access block. So when I go into the site and try to block his access, it will not allow me to save my block settings! There are other ways to disable the wifi but they create additional problems for myself. I would prefer to
Can anyone suggest any ways or ideas as to how I can get this access block to work and overturn whatever it is he is doing? If you need more details on anything including the ISP, modem, etc., don't hesitate to ask. I would really like to regain control for the health and safety of my kids! THANKS.