Edward Vermette

8/30/14
CNT 2510 Intro to Wireless
Section #5!00
"ro#ect # 1$ "ro%lin& a 'ree Wireless Tool
'or t(is )ro#ect I selected an o)en*so+rce )ro&ram ,rom a so,tware s+ite
desi&ned to test wireless sec+rit-. t(is is sometimes called )entestin&/ T(e name o,
t(e so,tware s+ite I will +se is 0ircrac1*n&2 t(e so,tware itsel, is called airod+m)*n&
and to +se airod+m)*n& re3+ires %rst r+nnin& airmon*n&/ So2 tec(nicall- I will 4e
em)lo-in& two )ro&rams 4+t t(e- are )art o, t(e same s+ite and wor1 in
con#+nction2 as I will e5)lain/ I will not 4e attem)tin& an-t(in& illicit (ere or tr-in& to
act+all- )enetrate a sec+re networ1. m- )+r)ose will 4e sim)l- to scan ,or and
identi,- access )oints and t(e in,ormation t(e- are 4roadcastin&/
T(e 0ircrac1*n& so,tware 4+ndle2 as i (a6e said2 is intended to (el) a sec+rit-
administrator identi,- wea1nesses in t(eir wireless networ1/ T(ere are o6er 15 tools
in t(e s+ite t(at ser6e ,+nctions li1e )ac1et sni7n&2 )ac1et creation and in#ection2
crac1in& and reco6erin& W"0 and WE" 1e-s2 6irt+al t+nnel inter,ace creation and
)+ttin& t(e wireless card into monitor mode/ 'or t(is I will 4e +sin& airmon*n& to )+t
t(e card into monitor mode to ena4le scannin& and airod+m)*n& to do t(e act+al
scannin& or )ac1et sni7n&/
0ircrac1*n& was ori&inall- de6elo)ed 4- C(risto)(e 8e6ine and t(en T(omas
d9:tre))e/ It is wort( notin& t(at t(is is an o)en*so+rce )ro&ram and ot(ers (a6e
made contri4+tions to it as s+c(/ T(e sta4le release o, t(is incarnation was on 0)ril
242 2010/ T(e so,tware is a6aila4le ,or Windows and ;in+5/ It s(o+ld &o wit(o+t
sa-in& t(at t(e Windows 6ersion is s(i))ed wit( a 6er- a))ealin& &ra)(ic +ser
inter,ace or <=I2 t(at incor)orates all o, t(e )ro&rams and t(eir +ses into one/ I will
4e +sin& t(e ;in+5 6ersion w(ic( I seem to (a6e 4etter l+c1 wit( in t(e terminal/ 0n
o)en so+rce ,ront*end or <=I does e5ist2 one 4- t(e name o, <eri5 is 6er- close to
t(e loo1 and ,eel o, t(e Windows 6ersion 4+t as I said2 I will em)lo- t(e command
line 6ersion o, 0irmon*n& and 0irod+m)*n& ,or ;in+5 ,or t(is )ro#ect/
>ein& wit(o+t a <=I and o,ten not e6en com)iled w(en transmitted 4etween
)arties2 t(e download si?e is relati6el- small/ T(e so+rce %les are 2 me&a4-tes in
total. com)ara4le to a 6er- small ima&e %le/ E6en t(e Windows 6ersion o, 0ircrac1*
n& comes in at a w(o))in& 5 me&a4-tes. t(at is ama?in&l- com)act ,or almost an-
Windows so,tware/
I en#o- t(e ;in+52 command line 6ersion t(is )ro&ram immensel- and it (as
4een m- &o to w(en sni7n& Wi*'i networ1s ,or a w(ile/ I will sa- t(at <=I 6ersions
sacri%ce some o, t(e more tec(nical ,+nctionalities ,or ease o, +se and 6is+al a))eal
and I do not )re,er t(em +nder an- o)eration s-stem and/or in an- en6ironment/
:ne last iss+e is acti6e 6ers+s )asses sni7n&. acti6e or a&&ressi6e sni7n& in t(e
manner descri4ed can 4e detected and is re,erred to as a com)onent o, w(at is
1nown as @War*8ri6in&@/ T(is can t(e %rst sta&e in attac1in& a networ1 or t(e
#+sti%ed act o, a 6alid +ser attem)tin& to locate an access )oint/ 0irod+m)*n& wor1s
in an acti6e mode2 and can attract +nwanted attention to t(e sniAer/ T(ere are
)assi6e sniAers2 s+c( as Bismet2 4+t (ere a&ain2 some ,+nctions ma- 4e sacri%ced2
t(is time ,or anon-mit-/
In t(e screens(ots2 it can 4e seen t(at wit( t(is )ro&ram in,ormation on
a6aila4le and (idden 0ccess "oints2 >SSI82 ESSI82 C0C 0ddressin&2 encr-)tion t-)e2
)ac1ets transmitted2 )ower le6el2 distance2 a+t(entication and c(annels2 can 4e
o4tained2 monitored and recorded/ I will incl+de a screens(ot ,or eac( command I
iss+e to t(e terminal/ 'irst Diwcon%&E to %nd m- dis)la- m- inter,ace name. wlan1/
Ca)t+re n+m4er two is o, Dairmon*n&E 4ein& +sed to switc( t(e inter,ace to monitor
mode and dis)la-in& t(e name o, t(e 6irt+al inter,ace we #+st made2 Dmon0E/ 0s
can 4e seen in t(e s(ot2 t(e s-nta5 ,or t(e command is relati6el- strai&(t ,orward/
'rom (ere on we will 4e +sin& mon0. w(ic( a&ain2 is #+st wlan1 in monitor mode/
0lso in screens(ot n+m4er two is t(e command ,or startin& airod+m)*n&. t(ere are
man- o)tions ,or %lterin& and scannin& criteria 4+t ,or t(ese )+r)oses we are #+st
loo1in&/ 'inall-2 t(e t(ird screens(ot s(ows t(e act+al )ro&ram r+nnin& and
dis)la-in& all t(e in,ormation a6aila4le/
I will contin+e to +se t(is )ro&ram to %nd 0ccess "oints and assess sec+rit-
iss+es wit( m- networ1s and t(ose I am em)lo-ed to do so ,or/ I wo+ld li1e to sa-
t(at t(is2 li1e almost an- ot(er tool2 can 4e +sed et(icall- or ne,ario+sl-. I am 4- no
means ad6ocatin& an-t(in& ille&al/