Author Topic: Hacking a wireless card  (Read 4758 times)

0 Members and 1 Guest are viewing this topic.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Hacking a wireless card
« on: June 22, 2006, 08:16:58 am »
Didn't I once say how cool this would be?

Quote
Can't wait to read their paper.

Via InfoWorld.

[snip]

Security researchers have found a way to seize control of a laptop
computer by manipulating buggy code in the system's wireless device driver.

The hack will be demonstrated at the upcoming Black Hat USA 2006
conference during a presentation by David Maynor, a research engineer
with Internet Security Systems and Jon Ellch, a student at the U.S.
Naval postgraduate school in Monterey, California.

The two researchers used an open-source 802.11 hacking tool called
LORCON (Lots of Radion Connectivity) to throw an extremely large number
of wireless packets at different wireless cards. Hackers use this
technique, called fuzzing, to see if they can cause programs to fail,
or perhaps even run unauthorized software when they are bombarded with
unexpected data.

Using tools like LORCON, Maynor and Ellch were able to discover many
examples of wireless device driver flaws, including one that allowed
them to take over a laptop by exploiting a bug in an 802.11 wireless
driver. They also examined other networking technologies including
Bluetooth, Ev-Do (EVolution-Data Only), and HSDPA (High Speed Downlink
Packet Access).

[snip]

More:
http://www.infoworld.com/article/06/06/21/79536_HNwifibreach_1.html

- ferg


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg@netzero.net or fergdawg@sbcglobal.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.


Offline Hdx

  • The Hdx!
  • Full Member
  • ***
  • Posts: 311
  • <3 Java/Cpp/VB/QB
    • View Profile
Re: Hacking a wireless card
« Reply #1 on: June 22, 2006, 03:01:46 pm »
mm That is pretty cool, I figured it would happen someday tho.
Best I could get was realtime-captureing/displaying at my school, tho I didn't try much
~-~(HDX)~-~
http://img140.exs.cx/img140/6720/hdxnew6lb.gif
09/08/05 - Clan SBs @ USEast
 [19:59:04.000] <DeadHelp> We don't like customers.
 [19:59:05.922] <DeadHelp> They're assholes
 [19:59:08.094] <DeadHelp> And they're never right.

Offline Quik

  • Webmaster Guy
  • x86
  • Hero Member
  • *****
  • Posts: 3262
  • \x51 \x75 \x69 \x6B \x5B \x78 \x38 \x36 \x5D
    • View Profile
Re: Hacking a wireless card
« Reply #2 on: June 22, 2006, 03:27:03 pm »
Is this all the information you have? Is it the ability to compromise a laptop with nothing more than a wireless card available for connection?

Hrm, somewhat scary.
Quote
[20:21:13] xar: i was just thinking about the time iago came over here and we made this huge bomb and light up the sky for 6 min
[20:21:15] xar: that was funny

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Hacking a wireless card
« Reply #3 on: June 22, 2006, 03:35:19 pm »
That's pretty awesome.  I'd want to see it at the Black Hat convention and learn howt o do it and scare the hell out of my brother. :P
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline Quik

  • Webmaster Guy
  • x86
  • Hero Member
  • *****
  • Posts: 3262
  • \x51 \x75 \x69 \x6B \x5B \x78 \x38 \x36 \x5D
    • View Profile
Re: Hacking a wireless card
« Reply #4 on: June 22, 2006, 03:36:41 pm »
That's pretty awesome.  I'd want to see it at the Black Hat convention and learn howt o do it and scare the hell out of my brother. :P

Try visiting DefCon in Las Vegas if you want to learn some tricks. That's not really the point of the confrences though, most people look down upon that kinda attitude. =/
Quote
[20:21:13] xar: i was just thinking about the time iago came over here and we made this huge bomb and light up the sky for 6 min
[20:21:15] xar: that was funny

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking a wireless card
« Reply #5 on: June 22, 2006, 05:18:52 pm »
Well, according to the article details on the exploitation method will be presented at Black Hat, which is why it's relevant in this thread. 

The point of cons is to showcase new technologies and new techniques, which very frequently involves hacking demonstrations.  That's the reason why a lot of people look up to them, too. 

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Hacking a wireless card
« Reply #6 on: June 22, 2006, 06:21:04 pm »
Yeah, I can't really visit any of those conventions until I have a source of income (read: not my parents).  It'd be fun to go though.  Anybody ever been?
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline Quik

  • Webmaster Guy
  • x86
  • Hero Member
  • *****
  • Posts: 3262
  • \x51 \x75 \x69 \x6B \x5B \x78 \x38 \x36 \x5D
    • View Profile
Re: Hacking a wireless card
« Reply #7 on: June 22, 2006, 08:32:18 pm »
Well, according to the article details on the exploitation method will be presented at Black Hat, which is why it's relevant in this thread. 

The point of cons is to showcase new technologies and new techniques, which very frequently involves hacking demonstrations.  That's the reason why a lot of people look up to them, too. 

I read that, just wondering if there was any more information other than this article.

I understand about presenting the information at the cons, I just don't think deadly going to them just so he can maliciously attack his brother and possibly others is such a great idea.
Quote
[20:21:13] xar: i was just thinking about the time iago came over here and we made this huge bomb and light up the sky for 6 min
[20:21:15] xar: that was funny

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Hacking a wireless card
« Reply #8 on: June 22, 2006, 09:37:31 pm »
I wouldn't call it malicious.  It's just he's so uptight about everything.  I wouldn't actually use it to damage someone's computer/laptop or do anything bad.  What's life if you can't have a little fun?
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking a wireless card
« Reply #9 on: June 22, 2006, 11:20:14 pm »
Hacking is something very serious, and I wouldn't take it lightly.  If something goes wrong (which is always possible), you can do a lot of damage.  Additionally, you're violating his trust, in a way.  You like reading, so you should check out the book "Rights and Responsibilities of Partipants in Networked Communities" by the Compuer Science and Telecommunications Board National Research Council (no specific author).  I've never actually read it, or even flipped through it, but it's on my bookshelf and sounds like it applies :)

Offline Quik

  • Webmaster Guy
  • x86
  • Hero Member
  • *****
  • Posts: 3262
  • \x51 \x75 \x69 \x6B \x5B \x78 \x38 \x36 \x5D
    • View Profile
Re: Hacking a wireless card
« Reply #10 on: June 23, 2006, 04:13:30 am »
Also, unless you are very familiar with all of the code involved in the hack, there is a possibility that it will do something you didn't expect. There could be malicious code from the writer there that you would execute on your brother's computer without you knowing. This is just one reason why your idea is not as great as it seems to you.

Also, what makes you think showing it in action in front of an audience and possibily an explaination of how it works would allow you to do it? There's a difference between writing code for your specific target and double-clicking an executable file.
Quote
[20:21:13] xar: i was just thinking about the time iago came over here and we made this huge bomb and light up the sky for 6 min
[20:21:15] xar: that was funny

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Hacking a wireless card
« Reply #11 on: June 23, 2006, 03:12:57 pm »
Also, unless you are very familiar with all of the code involved in the hack, there is a possibility that it will do something you didn't expect. There could be malicious code from the writer there that you would execute on your brother's computer without you knowing. This is just one reason why your idea is not as great as it seems to you.
Which is why I'd learn the language it's written in (or at least the portions of the language that pertain to whatever script/whatever the thing is written into) if I don't already know it and then review the script.
Quote
Also, what makes you think showing it in action in front of an audience and possibily an explaination of how it works would allow you to do it? There's a difference between writing code for your specific target and double-clicking an executable file.
Listen closely + write notes, and of course knowing programming.
There are other ways to do what I'm proposing (VNC for one) but none of them would require actually learning stuff.  And anyways, hacking/figuring out how to do it would help in security I'm sure.  You can't defend against something you don't understand at all.

Hacking is something very serious, and I wouldn't take it lightly.  If something goes wrong (which is always possible), you can do a lot of damage.  Additionally, you're violating his trust, in a way.  You like reading, so you should check out the book "Rights and Responsibilities of Partipants in Networked Communities" by the Compuer Science and Telecommunications Board National Research Council (no specific author).  I've never actually read it, or even flipped through it, but it's on my bookshelf and sounds like it applies :)
Haha.  I think you should read it first to see if it applies. :P
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking a wireless card
« Reply #12 on: June 23, 2006, 03:41:48 pm »
Hacking is something very serious, and I wouldn't take it lightly.  If something goes wrong (which is always possible), you can do a lot of damage.  Additionally, you're violating his trust, in a way.  You like reading, so you should check out the book "Rights and Responsibilities of Partipants in Networked Communities" by the Compuer Science and Telecommunications Board National Research Council (no specific author).  I've never actually read it, or even flipped through it, but it's on my bookshelf and sounds like it applies :)
Haha.  I think you should read it first to see if it applies. :P
I refuse to read a book written by a council :P

Offline deadly7

  • 42
  • x86
  • Hero Member
  • *****
  • Posts: 6496
    • View Profile
Re: Hacking a wireless card
« Reply #13 on: June 23, 2006, 04:12:16 pm »
Then why buy it?
[17:42:21.609] <Ergot> Kutsuju you're girlfrieds pussy must be a 403 error for you
 [17:42:25.585] <Ergot> FORBIDDEN

on IRC playing T&T++
<iago> He is unarmed
<Hitmen> he has no arms?!

on AIM with a drunk mythix:
(00:50:05) Mythix: Deadly
(00:50:11) Mythix: I'm going to fuck that red dot out of your head.
(00:50:15) Mythix: with my nine

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17914
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking a wireless card
« Reply #14 on: June 23, 2006, 04:34:52 pm »
I didn't.