Steal datas all around you using Probe Requests 12-20-2013, 12:57 PM
#1
You know that human like easy and automated things. Today, everywhere you go, you can connect to a free wifi hotspot or whatever (like macdonald, KFC etc...) and these places can be a very big playing area ! Why ?
Most of people always accept to connect automatically to wifi network when they are close enough. And this where the mistake is. By ticking this option, your device will send probe requests at regular interval. The aim of these probe requests is to make your device say:
" Hello, I'm an androiddevice. Is the home network close enough to get me connected to it ? No ? Ok and the work network ? No ? and what about macdonald network ? "
So by this way:
1- You can easily know where people has been
2- You can know to each one he reconnects automatically
This is a python script I made using scapy. And you can see here an example of probe req capture:
![[Image: sqscreen.jpg]](http://s16.postimg.org/lb9gsiul1/sqscreen.jpg)
The code to do this is:
What happen now:
You can create a Rogue Access Point with the same SSID someone wants to connect automatically. His device will connect automatically to it because your computer will send a Probe Resp to it. Now you just have to connect your computer to the internet with your smartphone, Forward every packets and this victime will browse the internet normally most of the time without noticing that his home network (or another one requested by the device) is out of range. You can sniff everything because his traffic is going directly into your network card.
Conclusion: THE AIM OF THIS TUTORIAL IS NOT TO TELLING YOU TO STEAL DATAS AROUND YOU BUT TO ADVICE YOU TO NEVER ACCEPT TO RECONNECT AUTOMATICALLY TO A WIFI NETWORK. THIS CAN BE VERY DANGEROUS FOR YOU, BECAUSE MOST OF SMARTPHONES SEND CONFIDENTIAL DATAS QUIETLY WHEN THEY HAVE AN INTERNET CONNECTION. IF YOU WANT TO KEEP THE AUTO RECONNECT OPTION ENABLED, JUST DISABLE WIFI ON YOUR DEVICE WHEN YOU ARE IN PUBLIC PLACES.
This tutorial will be improved soon :Smile:
If you want to learn about 802.11 frames: http://www.wi-fiplanet.com/tutorials/art...hp/1447501
Most of people always accept to connect automatically to wifi network when they are close enough. And this where the mistake is. By ticking this option, your device will send probe requests at regular interval. The aim of these probe requests is to make your device say:
" Hello, I'm an androiddevice. Is the home network close enough to get me connected to it ? No ? Ok and the work network ? No ? and what about macdonald network ? "
So by this way:
1- You can easily know where people has been
2- You can know to each one he reconnects automatically
This is a python script I made using scapy. And you can see here an example of probe req capture:
The code to do this is:
Code:
#!/usr/bin/env python
import os
from scapy.all import *
def sniff_probe(p):
if (p.haslayer(Dot11ProbeReq)): #Checking if Dot11ProbeReq is present
mac_address=(p.addr2) #Grabbing source mac address
ssid=p[Dot11Elt].info #Grabbing ssid
ssid=ssid.decode('utf-8','ignore') #Translating ssid
if ssid == "":
ssid="null"
else:
print "[>] Probe Request from %s for SSID '%s'" %(mac_address,ssid)
sniff(iface="mon0",prn=sniff_probe)What happen now:
You can create a Rogue Access Point with the same SSID someone wants to connect automatically. His device will connect automatically to it because your computer will send a Probe Resp to it. Now you just have to connect your computer to the internet with your smartphone, Forward every packets and this victime will browse the internet normally most of the time without noticing that his home network (or another one requested by the device) is out of range. You can sniff everything because his traffic is going directly into your network card.
Conclusion: THE AIM OF THIS TUTORIAL IS NOT TO TELLING YOU TO STEAL DATAS AROUND YOU BUT TO ADVICE YOU TO NEVER ACCEPT TO RECONNECT AUTOMATICALLY TO A WIFI NETWORK. THIS CAN BE VERY DANGEROUS FOR YOU, BECAUSE MOST OF SMARTPHONES SEND CONFIDENTIAL DATAS QUIETLY WHEN THEY HAVE AN INTERNET CONNECTION. IF YOU WANT TO KEEP THE AUTO RECONNECT OPTION ENABLED, JUST DISABLE WIFI ON YOUR DEVICE WHEN YOU ARE IN PUBLIC PLACES.
This tutorial will be improved soon :Smile:
If you want to learn about 802.11 frames: http://www.wi-fiplanet.com/tutorials/art...hp/1447501
![[+]](https://sinister.ly/images/modern/collapse_collapsed.png)
Starbucks would be a good location