BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] comcast wifi question
- Subject: [Discuss] comcast wifi question
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- Date: Sat, 8 Nov 2014 22:29:47 +0000
- In-reply-to: <338060481af24897804c102d43846380@BN3PR0401MB1204.namprd04.prod.outlook.com>
- References: <545971EF.5030400@gmail.com> <545976F5.6040907@gmail.com> <545AC024.1000408@gmail.com> <f317a6efafe346ce86d7064639bdcd09@BN3PR0401MB1204.namprd04.prod.outlook.com> <545C028A.5010407@gmail.com> <338060481af24897804c102d43846380@BN3PR0401MB1204.namprd04.prod.outlook.com>
> From: discuss-bounces+blu=nedharvey.com at blu.org [mailto:discuss- > bounces+blu=nedharvey.com at blu.org] On Behalf Of Edward Ned Harvey > (blu) > > Additionally, if you get on the network and want to attack another client on > the same wifi connection, there's an awful lot of broadcast traffic exposure > which is not protected by the session keys, and you can target packets to > their specific IP address, will also not be protected by their session keys. The > only thing that's protected by their session keys are their non-broadcast > traffic to *other* endpoints. > > Based on what you wrote above, even that seems pretty easy to break. It turns out, wireshark has 802.11 decryption built-in. You go to Edit/Preferences, Protocols, IEEE 802.11, and enter SSID and Password. You have to make sure that you start sniffing before another client associates to the SSID, so it can capture the session keys (all 4 packets are required). As long as you don't miss them, wireshark sniffs the wifi just like a wired hub or anything else. So that's a conclusive result. As long as you have the password of a WPA2 connection, then yes, you can sniff all the traffic on that network. If you don't have the password to some network, the key is derived using pbkdf2 with 4096 iterations. This means a single cpu core can guess around 36 guesses per second. You should be able to go several hundred or several thousand times faster with a GPU or FPGA.
- Follow-Ups:
- [Discuss] comcast wifi question
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] comcast wifi question
- References:
- [Discuss] comcast wifi question
- From: eric.chadbourne at gmail.com (Eric Chadbourne)
- [Discuss] comcast wifi question
- From: richard.pieri at gmail.com (Richard Pieri)
- [Discuss] comcast wifi question
- From: eric.chadbourne at gmail.com (Eric Chadbourne)
- [Discuss] comcast wifi question
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] comcast wifi question
- From: tmetro+blu at gmail.com (Tom Metro)
- [Discuss] comcast wifi question
- From: blu at nedharvey.com (Edward Ned Harvey (blu))
- [Discuss] comcast wifi question
- Prev by Date: [Discuss] mysql problem
- Next by Date: [Discuss] comcast wifi question
- Previous by thread: [Discuss] comcast wifi question
- Next by thread: [Discuss] comcast wifi question
- Index(es):