.

WEP Cracking

<<

eth3real

User avatar

Sr. Member
Sr. Member

Posts: 309

Joined: Wed Feb 27, 2008 10:35 am

Location: US

Post Wed Nov 16, 2011 11:53 am

WEP Cracking

Hi Everyone,

I know it's an old subject, but if anyone is in the US, in the Jacksonville, FL area, come to the Jacksonville Linux Users Group tonight. I'm doing a presentation on the security flaws of the WEP protocol, and demonstrate how easy it is to subvert. Details and slides at the link below:

http://www.hacksonville.com/?p=134

Thanks!  ;D
Put that in your pipe and grep it!
<<

rance

User avatar

Full Member
Full Member

Posts: 212

Joined: Thu Jan 03, 2008 5:24 pm

Location: Earth

Post Wed Nov 16, 2011 12:26 pm

Re: WEP Cracking

I can't make it, but if you run in to anyone still using WEP, please slap them for me.  ;D
Poking at security since 1986.  +++ATH
<<

eth3real

User avatar

Sr. Member
Sr. Member

Posts: 309

Joined: Wed Feb 27, 2008 10:35 am

Location: US

Post Wed Nov 16, 2011 12:40 pm

Re: WEP Cracking

+1 rance
Unfortunately, I still see WEP networks all over the place. :(
Put that in your pipe and grep it!
<<

pseud0

User avatar

Recruiters
Recruiters

Posts: 210

Joined: Sat Nov 17, 2007 8:26 pm

Location: Detroit, Michigan

Post Wed Nov 16, 2011 2:39 pm

Re: WEP Cracking

See them all the time.  If we're doing a wireless assessment and the client is in a dense area (tall building, office park, etc) we'll find at least half a dozen WEP APs from various other companies that share the facility.  Heaven help you if the client's building is downtown near apartments.  Not only do you have to bust out the directionals in order to make sure those APs are not inside the client's area, you also need to explain to them why the raw outputs you include in your work papers show AP names like "I [blanked] your sister" and "I have a giraffe [male genitalia]". 
CISSP, CISM, CISA, GCIH, GREM, CEH, HMFIC, KTHXBIROFLCOPTER
<<

eth3real

User avatar

Sr. Member
Sr. Member

Posts: 309

Joined: Wed Feb 27, 2008 10:35 am

Location: US

Post Thu Nov 17, 2011 2:36 pm

Re: WEP Cracking

My presentation went really well, I got a lot of positive feedback. This was my first presentation, by the way. ;D

pseud0, I'm curious now. Do outside wifi networks affect a pentest at all? I know you would be looking for rogue APs internally, but I'm curious about outside networks. I also got to show off a homemade directional antenna at my presentation, pretty cool stuff.

rance, nobody would admit to still using WEP. :P
Put that in your pipe and grep it!
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Thu Nov 17, 2011 3:55 pm

Re: WEP Cracking

There are alot of vendor products that use WEP for Scan guns.  I have a few of those were I am and it drives me batty.  Thankfully if you compromise them you won't get much and you won't get on the main network.  But still, c'mon vendors get with it! 
Certs: GCWN
(@)Dewser
<<

lorddicranius

User avatar

Sr. Member
Sr. Member

Posts: 448

Joined: Thu Mar 03, 2011 3:54 am

Post Thu Nov 17, 2011 4:18 pm

Re: WEP Cracking

3xban wrote:There are alot of vendor products that use WEP for Scan guns.  I have a few of those were I am and it drives me batty.  Thankfully if you compromise them you won't get much and you won't get on the main network.  But still, c'mon vendors get with it! 


I was fighting this battle for awhile until we had another problem with our scan guns and I convinced my boss to upgrade the scan guns rather than just replacing them with used ones.
GSEC, eCPPT, Sec+
<<

eth3real

User avatar

Sr. Member
Sr. Member

Posts: 309

Joined: Wed Feb 27, 2008 10:35 am

Location: US

Post Thu Nov 17, 2011 7:50 pm

Re: WEP Cracking

What's even worse is wireless security cameras that use WEP. :o
Put that in your pipe and grep it!
<<

pseud0

User avatar

Recruiters
Recruiters

Posts: 210

Joined: Sat Nov 17, 2007 8:26 pm

Location: Detroit, Michigan

Post Fri Nov 18, 2011 9:13 am

Re: WEP Cracking

The only really significant problem we run into with the "outside" APs is proving that they are "outside".  If you're looking for rogue access points it can get really difficult to figure out what might actually be on the client network and what is actually sitting at the law firm the floor above or the hedge fund the floor below.  The secondary risk for finding open access points outside of the client network is that employees might connect to it so that they can visit internet sites that are blocked by the corporate network.  They can get infected and then reconnect to the corporate network and cause a breach. 
CISSP, CISM, CISA, GCIH, GREM, CEH, HMFIC, KTHXBIROFLCOPTER
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Fri Nov 18, 2011 9:14 am

Re: WEP Cracking

eth3real wrote:What's even worse is wireless security cameras that use WEP. :o


No those are great  ;)

Over at BsidesDE this past weekend there was a talk by InfoSecJanitor that was really cool and scary.  Many manufacturers of cars, appliances and electronics are continuing to use WiFi based communications for various services.  WiFi light bulbs, tire pressure censors, Refrigerators able to call in parts servicing for you.  Freaky stuff!  
Certs: GCWN
(@)Dewser

Return to Wireless

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software