Differences between revisions 1 and 3 (spanning 2 versions)
Revision 1 as of 2017-03-02 15:11:08
Size: 9475
Editor: scot
Comment:
Revision 3 as of 2017-03-02 15:25:23
Size: 1604
Editor: scot
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
= Lab 09 Wireless Security & Wardriving =
Line 2: Line 3:
== Introduction ==
Line 3: Line 5:
  Lab 09 Wireless Security &Waredriviving The purpose of this lab is show you how to wardrive and to increase your awareness of the WiFi environment. Additional reading material: [[http://csrc.nist.gov/publications/PubsSPs.html|NIST publications SP 800-X on security]]
Line 5: Line 7:
Questions from reading: == Question ==
Line 7: Line 9:
Reading Material: NIST The following are additional lab questions you should be able to answer.
Line 9: Line 11:
publications SP 800-X on security  1. What is an SSID?
 1. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.
Line 11: Line 14:
       http://csrc.nist.gov/publications/PubsSPs.html || Security Mode || Encryption Algorithm || Secure / Not Secure ||
|| Open || || ||
|| WEP || || ||
|| WPA || || ||
|| ... || || ||
|| ... || || ||
|| ... || || ||
Line 13: Line 22:
    · Other web resources on WIFI  1. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?
 1. What is war-driving?
 1. Where would you find log files on Linux?
 1. Where would you find log files on Windows?
Line 15: Line 27:
    1. What is an SSID? == Lab Goals ==
Line 17: Line 29:
    2. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.  1. Install a WiFi SNIFFER such as Netstumbler or Kismet on your laptop.
 1. Collect data on a predetermined route
 1. Use excel as shown in the lab lecture to gather statistics on the wardrive.
Line 19: Line 33:
== Show Me ==
Line 20: Line 35:
||<tablestyle="border-collapse:collapse;border:none;mso-border-alt:solid black .5pt; mso-border-themecolor:text1;mso-yfti-tbllook:1184;mso-padding-alt:0in 5.4pt 0in 5.4pt" tableclass="MsoTableGrid"rowstyle="mso-yfti-irow:0;mso-yfti-firstrow:yes"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Security Mode''' ||<^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-left:none;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Encryption Algorithm''' ||<^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-left:none;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt">'''Secure / Not Secure''' ||
||<rowstyle="mso-yfti-irow:1"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:2"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:3"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:4"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:5"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||
||<rowstyle="mso-yfti-irow:6;mso-yfti-lastrow:yes"^ width="245px" style="width:2.55in;border:solid black 1.0pt; mso-border-themecolor:text1;border-top:none;mso-border-top-alt:solid black .5pt; mso-border-top-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||<^ width="245px" style="width:2.55in;border-top:none;border-left: none;border-bottom:solid black 1.0pt;mso-border-bottom-themecolor:text1; border-right:solid black 1.0pt;mso-border-right-themecolor:text1;mso-border-top-alt: solid black .5pt;mso-border-top-themecolor:text1;mso-border-left-alt:solid black .5pt; mso-border-left-themecolor:text1;mso-border-alt:solid black .5pt;mso-border-themecolor: text1;padding:0in 5.4pt 0in 5.4pt"> ||		 Turn an Excel spreadsheets similar to the table below containing data from 2015.
Line 28: Line 37:

    3. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?

      4. What is war-driving?

      5. Where would you find log files on Linux?

      6. Where would you find log files on Windows?

    Lab OPs 1. You will need a WIFI SNIFFER such as Netstumbler or Kismet on your laptop.

  War Drive Collegedale List places and SSIDs of any WIFI networks you find in the college campus area group them by secured vs non-secured. You will probably want to print this information/report from your sniffer software. EVERYONE must turn in their own report from their own war drive experience.
 || '''Encryption Type''' || '''AP Count''' ||
|| ESS || 437 ||
|| IBSS || 16 ||
|| Unknown || 3 ||
|| WEP || 23 ||
|| WPA2-EA || 420 ||
|| WPA2-PSK || 304 ||
|| WPA-EAP || 17 ||
|| WPA-PSK || 118 ||
|| WPS || 3 ||
|| '''Grand Total''' || '''1341'''||

Lab 09 Wireless Security & Wardriving

Introduction

The purpose of this lab is show you how to wardrive and to increase your awareness of the WiFi environment. Additional reading material: NIST publications SP 800-X on security

Question

The following are additional lab questions you should be able to answer.

  1. What is an SSID?
  2. Name the different security (encryption) modes for wireless networks. For each mode, give the encryption algorithm and tell if the security mode is secure.

Security Mode

Encryption Algorithm

Secure / Not Secure

Open

WEP

WPA

...

...

...

  1. In a default configuration from the factory of most wireless access points, what things would have to be changed to make an access point secure?
  2. What is war-driving?
  3. Where would you find log files on Linux?
  4. Where would you find log files on Windows?

Lab Goals

  1. Install a WiFi SNIFFER such as Netstumbler or Kismet on your laptop.

  2. Collect data on a predetermined route
  3. Use excel as shown in the lab lecture to gather statistics on the wardrive.

Show Me

Turn an Excel spreadsheets similar to the table below containing data from 2015.

Encryption Type

AP Count

ESS

437

IBSS

16

Unknown

3

WEP

23

WPA2-EA

420

WPA2-PSK

304

WPA-EAP

17

WPA-PSK

118

WPS

3

Grand Total

1341

NetworkSecurity/Lab/Lab06 (last edited 2021-03-04 18:57:01 by scot)