?? wardriving.html
字號:
<!-- saved from url=(0022)http://internet.e-mail -->
<html>
<head>
<title>Wardriving</title>
<style type=text/css>A:active {
TEXT-DECORATION: none
}
A:hover {
TEXT-DECORATION: underline
}
A:link {
TEXT-DECORATION: none
}
A:visited {
TEXT-DECORATION: none
}
</style>
</head>
<body text="#000000" bgcolor="#FFFFFF">
<center><table BORDER=0 CELLSPACING=2 CELLPADDING=2 WIDTH="308" >
<caption><TBODY>
<br></TBODY></caption>
<tr>
<td>
<pre><font color="#FF0000">.</font><font color="#000000">########</font><font color="#FF0000">...</font>######<font color="#FF0000">..</font>########<font color="#FF0000">..</font>########
<font color="#FF0000">.</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">......
.</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">.......</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">......
.</font>########<font color="#FF0000">...</font>######<font color="#FF0000">..</font>########<font color="#FF0000">..</font>######<font color="#FF0000">..
.</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.......</font>##<font color="#FF0000">.</font>##<font color="#FF0000">...</font>##<font color="#FF0000">...</font>##<font color="#FF0000">......
.</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">....</font>##<font color="#FF0000">..</font>##<font color="#FF0000">......
.</font>########<font color="#FF0000">...</font>######<font color="#FF0000">..</font>##<font color="#FF0000">.....</font>##<font color="#FF0000">.</font>##<font color="#FF0000">......</font></pre>
</td>
</tr>
</table></center>
<center>
<p><a href="http://blacksun.box.sk/" target="_blank">http://blacksun.box.sk/</a><br>
<a href="http://uc.zemos.net/">Unix Clan</a>
<br>Lecturer: <a href="mailto:simprix@simprix.net">simprix</a>
<br>Converter: <a href="mailto:DKsk8er166@hotmail.com">DKsk8</a>
<br>Lecture: Wardriving</center>
<p><br>
<br>
<br>
<br>
<p><Forbze> lol
<br><b><simprix> ok im back</b>
<br><AZTEK> well now loging works
<br><AZTEK> i am loging simprix
<br><b><simprix> ok</b>
<br><b><simprix> anyone can butt in if they want or if i say something wrong</b>
<br><b><simprix> ok</b>
<br><b><simprix> everyone here</b>
<br><miteymous> ;]
<br><Strider> ya
<br><b><simprix> ok girls and boys</b>
<br><b><simprix> Ok this will be centralized around linux because I have never done this in Windows and Windows sucks</b>
<br><miteymous> oki
<br><b><simprix> one thing i do know if you want to do this in windows then you need to use netstumpler</b>
<br><miteymous> or ApSniff
<br><miteymous> from a website i am lookin at :/
<br><b><simprix> Ok first off in linux you need to recompile your kernel with netlink and get rid of pcmcia support in the kernel</b>
<br><b><simprix> then you have to get the pcmcia source for pcmcia-cd.sourceforge.net</b>
<br><b><simprix> there are to ways you can do it now</b>
<br><b><simprix> you can use the wireless extensions in the kernel but you need a good card like a cisco aironet card</b>
<br><b><simprix> but the wireless extensions does not have as good sniffing techniques as the linux-wlan source</b>
<br><b><simprix> so they way i have done it is using the linux-wlan-ng source</b>
<br><b><simprix> you can get that from www.linux-wlan.org and you need to compile that</b>
<br><b><simprix> any questions so far?</b>
<br><b><simprix> or is no one listening</b>
<br><Strider> nope
<br><miteymous> is there info on editing the kernel?
<br><b><simprix> have you recompiled a kernel before?</b>
<br><Strider> miteymouse, wheres that site with ApSniff?
<br><miteymous> no im new sorry :(
<br><miteymous> strider: www.wardriving.com
<br><Paranoiac> What he/she/it said^
<br><Strider> thnx
<br><b><simprix> ok well you should read the howto </b>
<br><miteymous> i plan on it :P
<br><b><simprix> ok once you have compiled all that stuff your almost ready to get started</b>
<br><Paranoiac> Could you just explain what it is that those modifications do?
<br><Paranoiac> Or is it too lenghty to explain now.
<br><b><simprix> oh yea the linux-wlan stuff only works with the prism2 chipset, which are cards like linksys, dlink, netgear, zoom alot of consumer cards</b>
<br><b><simprix> what motifications</b>
<br><Paranoiac> The recompilations
<br><b><simprix> they are pretty much drivers for the cards</b>
<br><b><simprix> i prefer the zoom wireless cards</b>
<br><Paranoiac> Ah, ty
<br><b><simprix> ok does everyone in here know what snmp is</b>
<br><Forbze> any aussies here>?
<br><Forbze> SNMP
<br><font color="red">* Paranoiac does not....is a know-nothing-newb</font>
<br><b><simprix> well the linux-wlan binaries are alot like using snmp</b>
<br><b><simprix> like to specify the ssid</b>
<br><b><simprix> a ssid is kinda like a network id </b>
<br><b><simprix> say one access point is on ssid: ap01 </b>
<br><b><simprix> and one access point is on ssid: ap02</b>
<br><font color="red">--- BaGeL[CS] is now known as BaGeL</font>
<br><b><simprix> and you want to attach to ap01 then you would use the ssid of ap01</b>
<br><b><simprix> it is two specify wireless networks</b>
<br><b><simprix> everyone with me?</b>
<br><b><simprix> and questions?</b>
<br><Forbze> SNMP - Simple Network Managment Protocol
<br><b><simprix> ep</b>
<br><b><simprix> yep</b>
<br><Paranoiac> Ah
<br><Forbze> http://www.rad.com/networks/1995/snmp/snmp.htm
<br><Paranoiac> Ty
<br><b><simprix> ok but if you are not familer with snmp and using mibs, you could use a program my friend wrote called wlanfe you can get it from se.rious.net or freshmeat.net</b>
<br><font color="red">--> r (trashmail@172.166.185.154) has joined #bsrf</font>
<br><b><simprix> ok now you are ready to go wardriving </b>
<br><font color="red">--> Sheik (sheik001@65.58.40.148) has joined #bsrf</font>
<br><b><simprix> i am warning, make sure you are with someone else and make them drive</b>
<br><Paranoiac> Hehe
<br><b><simprix> it is really hard to drive and look at your computer at the same time trust me</b>
<br><Forbze> wtf?
<br><Forbze> drive?
<br><Forbze> and computer
<br><Strider> heh
<br><b><simprix> yes</b>
<br><b><simprix> also you should get some programs before you go </b>
<br><miteymous> so you basically can just use someone elses wireless network?
<br><b><simprix> these programs are kismet, airsnort, scanchan, arpping</b>
<br><b><simprix> yes miteymous</b>
<br><miteymous> like...hijack it...an invisible parasite?
<br><miteymous> ok question
<br><b><simprix> yes</b>
<br><font color="red">-- Sheik has quit (Quit: )</font>
<br><miteymous> would it be possible to set up your own wireless network, that hijacks your targets, and then spreads it farther via your equipment
<br><miteymous> maybe letting you have free access at your house
<br><b><simprix> yes you could bridge the connection</b>
<br><b><simprix> with a wireless bridge</b>
<br><Paranoiac> he networks would need to overlap, though
<br><Paranoiac> *The
<br><miteymous> would the same basic techniques work with cell phone modems
<br><b><simprix> well if you have the wireless bridge on the same ssid then your ok</b>
<br><b><simprix> and they wont overlap</b>
<br><b><simprix> miteymous: i dont know anything about cell phone modems</b>
<br><miteymous> well i mean they obviously work on different frequencies
<br><b><simprix> it might work but i dont know what cell phones use as there protocals</b>
<br><b><simprix> well then you could use a frequency counter and use a ham radio</b>
<br><font color="red">-- Forbze has quit (Ping timeout)</font>
<br><LiquidKn0wledge> hey is neve campbelle that girl in the movie three to tango?
<br><b><simprix> everyone ready to continue</b>
<br><font color="red">-- r (trashmail@172.166.185.154) has left #bsrf</font>
<br><Strider> go ahead :)
<br><miteymous> yah
<br><miteymous> :D
<br><font color="red">--> Forbze (thedon@203.134.22.186) has joined #bsrf</font>
<br><font color="red">--- ChanServ gives channel operator status to Forbze</font>
<br><b><simprix> ok well when you are ready to go you need to put your wireless card in promiscuos mode which means it will gather everything that is in the air </b>
<br><b><simprix> there are tools that come with kismet</b>
<br><font color="red">-- LiquidKn0wledge (LiquidKn0w@66.153.12.78) has left #bsrf</font>
<br><b><simprix> ok after that is all set you will start up kismet</b>
<br><b><simprix> and go drive around </b>
<br><b><simprix> once something pops up on the screen there will be three sections</b>
<br><zemo> nite all
<br><b><simprix> ssid: it will say the ssid here</b>
<br><Strider> nite
<br><b><simprix> WEP: it will say if wep is being used</b>
<br><b><simprix> channel it will say what channel the network is on </b>
<br><b><simprix> does everyone know what WEP is</b>
<br><miteymous> no
<br><Paranoiac> ditto
<br><b><simprix> wireless encryption protocal</b>
<br><b><simprix> it encrypts the network </b>
<br><b><simprix> so you cant attach to the network unless you have the wep key</b>
<br><Paranoiac> What kind of encryption is it?
<br><b><simprix> RC4</b>
<br><font color="red">-- ro0t has quit (Quit: rm -rf /;reboot&)</font>
<br><miteymous> so you have to crack the encryption then, does kismet do that?
<br><b><simprix> no </b>
<br><font color="red">--> ro0t (ro0t@216.153.217.132) has joined #bsrf</font>
<br><b><simprix> ok we will get to what you do if they use wep</b>
<br><b><simprix> but first we will talk about a network with out wep</b>
<br><b><simprix> while you are watching a kismet it will say what the ssid is remember that</b>
<br><b><simprix> if it says under W: N, then they arent using wep</b>
<br><b><simprix> ok so once you have got these</b>
<br><b><simprix> you will need pop out your card to take it out of promiscues mode </b>
<br><b><simprix> and pop it back in</b>
<br><b><simprix> then you will open wlanfe</b>
<br><b><simprix> and under ssid type the ssid you got from kismet</b>
<br><b><simprix> and click apply</b>
<br><b><simprix> now you are attached </b>
<br><b><simprix> now you need to get a ip </b>
<br><b><simprix> if the access point is using dhcp you can get it that way</b>
<br><b><simprix> but if it isnt you need to find out what ips they are using</b>
<br><b><simprix> to do this we will use arping </b>
<br><b><simprix> run that and we will get some ips they are using </b>
<br><b><simprix> so you will assign a unused ip using ifconfig</b>
<br><b><simprix> and then it is just like you are on a normal network</b>
<br><b><simprix> any questions?</b>
?? 快捷鍵說明
復制代碼
Ctrl + C
搜索代碼
Ctrl + F
全屏模式
F11
切換主題
Ctrl + Shift + D
顯示快捷鍵
?
增大字號
Ctrl + =
減小字號
Ctrl + -