Differences between revisions 1 and 7 (spanning 6 versions)
Revision 1 as of 2017-03-02 15:11:08
Size: 9475
Editor: scot
Comment:
Revision 7 as of 2019-05-12 18:18:54
Size: 2097
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
= Lab 06 Wireless Security & Wardriving =
Line 2: Line 3:
== Introduction ==
Line 3: Line 5:
  Lab 09 Wireless Security &Waredriviving The purpose of this lab is show you how to wardrive and to increase your awareness of the WiFi environment. Additional reading material: [[http://csrc.nist.gov/publications/PubsSPs.html|NIST publications SP 800-X on security]]
Line 5: Line 7:
Questions from reading: == Question ==
Line 7: Line 9:
Reading Material: NIST The following are additional lab questions you should be able to answer.
Line 9: Line 11:
publications SP 800-X on security  1. What is an SSID?
 1. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.
Line 11: Line 14:
       http://csrc.nist.gov/publications/PubsSPs.html || Security Mode || Encryption Algorithm || Secure / Not Secure ||
|| Open || || ||
|| WEP || || ||
|| WPA || || ||
|| ... || || ||
|| ... || || ||
|| ... || || ||
Line 13: Line 22:
    · Other web resources on WIFI  1. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?
 1. What is war-driving?
 1. Where would you find log files on Linux?
 1. Where would you find log files on Windows?
Line 15: Line 27:
    1. What is an SSID? == Lab Goals ==
Line 17: Line 29:
    2. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.  1. Install a WiFi SNIFFER on your laptop or phone.
    1. In 2017 we used [[https://www.vistumbler.net/|Vistumbler]] for Windows
    1. In 2017 I had several students us [[http://kismac-ng.org/|KisMAC]] for Mac
    1. Android - no one used it in 2017, but I might suggest G-Mon... there are many others.
 1. Collect data on a predetermined route
 1. Use excel as shown in the lab lecture to gather statistics on the wardrive.
Line 19: Line 36:
== Show Me ==
Line 20: Line 38:
||<tablestyle="border-collapse:collapse;border:none;mso-border-alt:solid black .5pt; mso-border-themecolor:text1;mso-yfti-tbllook:1184;mso-padding-alt:0in 5.4pt 0in 5.4pt" tableclass="MsoTableGrid"rowstyle="mso-yfti-irow:0;mso-yfti-firstrow:yes"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Security Mode''' ||<^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-left:none;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Encryption Algorithm''' ||<^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-left:none;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Secure / Not Secure''' ||
||<rowstyle="mso-yfti-irow:1"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:2"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:3"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:4"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:5"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:6;mso-yfti-lastrow:yes"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||		 Turn an Excel spreadsheets, similar to the table below, containing data from 2015. Since your data is collected in terms of instances found, it is ideal for a cross tab. If you don't know how to do one of these pay special attention in the lecture and check out the spreadsheet [[attachment:Wireless War Driving Stats 2015.xlsx|attached]].
Line 28: Line 40:

    3. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?

      4. What is war-driving?

      5. Where would you find log files on Linux?

      6. Where would you find log files on Windows?

    Lab OPs 1. You will need a WIFI SNIFFER such as Netstumbler or Kismet on your laptop.

  War Drive Collegedale List places and SSIDs of any WIFI networks you find in the college campus area group them by secured vs non-secured. You will probably want to print this information/report from your sniffer software. EVERYONE must turn in their own report from their own war drive experience.
 || '''Encryption Type''' || '''AP Count''' ||
|| ESS || 437 ||
|| IBSS || 16 ||
|| Unknown || 3 ||
|| WEP || 23 ||
|| WPA2-EA || 420 ||
|| WPA2-PSK || 304 ||
|| WPA-EAP || 17 ||
|| WPA-PSK || 118 ||
|| WPS || 3 ||
|| '''Grand Total''' || '''1341'''||

Lab 06 Wireless Security & Wardriving

Introduction

The purpose of this lab is show you how to wardrive and to increase your awareness of the WiFi environment. Additional reading material: NIST publications SP 800-X on security

Question

The following are additional lab questions you should be able to answer.

  1. What is an SSID?
  2. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.

Security Mode

Encryption Algorithm

Secure / Not Secure

Open

WEP

WPA

...

...

...

  1. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?
  2. What is war-driving?
  3. Where would you find log files on Linux?
  4. Where would you find log files on Windows?

Lab Goals

  1. Install a WiFi SNIFFER on your laptop or phone.

    1. In 2017 we used Vistumbler for Windows

    2. In 2017 I had several students us KisMAC for Mac

    3. Android - no one used it in 2017, but I might suggest G-Mon... there are many others.
  2. Collect data on a predetermined route
  3. Use excel as shown in the lab lecture to gather statistics on the wardrive.

Show Me

Turn an Excel spreadsheets, similar to the table below, containing data from 2015. Since your data is collected in terms of instances found, it is ideal for a cross tab. If you don't know how to do one of these pay special attention in the lecture and check out the spreadsheet attached.

Encryption Type

AP Count

ESS

437

IBSS

16

Unknown

3

WEP

23

WPA2-EA

420

WPA2-PSK

304

WPA-EAP

17

WPA-PSK

118

WPS

3

Grand Total

1341

NetworkSecurity/Lab/Lab06 (last edited 2021-03-04 18:57:01 by scot)