HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 39 guests and 2 members online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Wirelessarrow tracking my own laptop
EH-Net
May 21, 2013, 05:56:28 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: tracking my own laptop  (Read 6779 times)
0 Members and 1 Guest are viewing this topic.
roajah
Newbie
*
Offline Offline

Posts: 1


View Profile
« on: March 23, 2010, 08:51:40 AM »
Hello.

After my camera got stollen at the new years eve party, i thought that someday somebody would steal my laptop, and it's pretty expensive.

So i thought, there has to be a way of tracking it down by using the wireless and ethernet adapter [or whatever it's called, i never knew] adresses.

If so, what info sould i write down for safe keeping?
A friend of mine tracked me by my phone's IMEI, but he's not around to ask him about this. So, if that was possible, than this sould be easier.

Thank you.
Logged
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #1 on: March 23, 2010, 09:09:24 AM »
Tracking it down by IP address probably wouldn't be very effective, if the address is being natted.

See for you to install software to track the computer, it would mean the computer doesn't have it's drive wiped, the right ports are open on the outbound connection, and the program itself isn't discovered.

Personally I still want to put one of these on my laptop.

http://www.stoptheft.com/site/products_security_plate.php

As for handling of theft:
Insure you laptop
disable auto-login. Require an account to login to use it.
shutdown, don't suspend.
encrypt the hard drive, and use a 25+ character passphrase (you'd be surprised at how quickly you can remember it and how fast you can type it after a week or so).

*Edit: I forgot. Backup your important data off the thing.
« Last Edit: March 23, 2010, 09:34:21 AM by chrisj » Logged
OSWP, Sec+
Armando
Jr. Member
**
Offline Offline

Posts: 83


Founder of eLearnSecurity


View Profile WWW
« Reply #2 on: March 25, 2010, 08:37:10 AM »
Hi chrisj,
Do you have a web server? or a hosting space?

0 cost solution: Write your own (hidden) tool to send the ip address and other information you may require to a specific PHP on the net every connection or every x minutes. (This is easily bypassable, but you would just require the thief to connect to the internet with your laptop once, to get a rough idea of where your laptop is).

This is of course something you can do as a small challenge and it could work well against people not interested in your laptop (someone who just finds it).

Keep in mind that :
1) Police hardly tracks such cases
2) The ip geo location is not reliable

You better full encrypt your hard drive with Truecrypt and watch it constantly.
Logged
Founder and Lead Author of eLearnSecurity
Training for Penetration Testers
http://www.elearnsecurity.com

Founder of HACK.ME Free community based web app security virtual labs
https://hack.me
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #3 on: March 25, 2010, 09:27:32 AM »
Armando,

Which is why I said, tracking by IP wouldn't be very useful. Smiley

As you pointed out, the police hardly tracks such cases. Geo-location isn't reliable. Any solution you put on the laptop is dependent upon the box not being wiped.

Which if you have it set up to require credentials to login, or full disk encryption it will be wiped.

From what I've read, the majority of the "steal the laptop" is about doing 1 of 2 things.

1) Getting something the fence / sell for money.
2) Getting a new toy you can't normally afford.
Logged
OSWP, Sec+
Armando
Jr. Member
**
Offline Offline

Posts: 83


Founder of eLearnSecurity


View Profile WWW
« Reply #4 on: March 25, 2010, 10:01:38 AM »
@chrisj  Yup.

I would also add Identity theft. Imagine how is it would get for a terrorist to have access to a stolen laptop even for a few hours.

This is going to get even more serious with smartphones that are more and more capable of doing all sorts of things.
Logged
Founder and Lead Author of eLearnSecurity
Training for Penetration Testers
http://www.elearnsecurity.com

Founder of HACK.ME Free community based web app security virtual labs
https://hack.me
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #5 on: March 25, 2010, 11:07:51 AM »
Armando,

How many terrorists hang out in coffee shops or walking through the parking lots and streets looking for un-attended laptops
Logged
OSWP, Sec+
hayabusa
Hero Member
*****
Offline Offline

Posts: 1631



View Profile
« Reply #6 on: March 25, 2010, 12:04:32 PM »
<chuckle>  chrisj...
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCE, OSCP , GPEN, C|EH
Armando
Jr. Member
**
Offline Offline

Posts: 83


Founder of eLearnSecurity


View Profile WWW
« Reply #7 on: March 25, 2010, 12:23:00 PM »
How many people would ever hijack an airplane to hit the most powerful country in the world?

You consider a threat only after you have felt its impact on your skin at least once.

And anyway, terrorism was just an example to say: it's not just about losing your $500 or $1000 laptop or your data. There's more risk involved than you're used to think.
Logged
Founder and Lead Author of eLearnSecurity
Training for Penetration Testers
http://www.elearnsecurity.com

Founder of HACK.ME Free community based web app security virtual labs
https://hack.me
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #8 on: March 25, 2010, 08:06:40 PM »
Last time I checked, Prey was still free:

http://preyproject.com/

The issue of course is that it has to be installed before your laptop gets stolen.   
Logged
~~~~~~~~~~~~~~
Ketchup
hayabusa
Hero Member
*****
Offline Offline

Posts: 1631



View Profile
« Reply #9 on: March 25, 2010, 09:32:36 PM »
I've seen similar, but never prey, before.  Thanks for the link... I'll have to check that one out, myself.
Logged
~ hayabusa ~ 

"All men can see these tactics whereby I conquer, but what none can see is the strategy out of which victory is evolved." - Sun Tzu, 'The Art of War'

OSCE, OSCP , GPEN, C|EH
n1p
Jr. Member
**
Offline Offline

Posts: 89


View Profile WWW
« Reply #10 on: March 26, 2010, 04:27:13 AM »
If all else fails, attach a kensingtion lock to your arm Tongue
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.1 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.