wifi
play

WiFi Social Engineering BIO Gabriel Mathenge Security enthusiast - PowerPoint PPT Presentation

Feb 18, 2023 •456 likes •891 views

WiFi Social Engineering BIO Gabriel Mathenge Security enthusiast Security consultant at Ernst and Young (EY) Penetration testing and red teaming T: https://twitter.com/_V1VI E: gabriel@thevivi.net QUESTIONS Stop me whenever youre

  1. WiFi Social Engineering

  2. BIO Gabriel Mathenge  Security enthusiast  Security consultant at Ernst and Young (EY)  Penetration testing and red teaming T: https://twitter.com/_V1VI E: gabriel@thevivi.net

  3. QUESTIONS Stop me whenever you’re curious

  4. WHY WIFI? Why WiFi?  Rapid growth of WiFi networks for commercial and private use  2015: Kenya’s internet penetration stood at 26 million people – KNBS Economic Survey

  5. SOCIAL ENGINEERING Social Engineering  Manipulating people into giving you what you want.

  6. IEEE 802.11 IEEE 802.11  IEEE - Institute of Electrical and Electronics Engineers  IEEE 802.11 - A set of specifications for implementing wireless networks  Define the rules of communication between clients and wireless access points (AP)

  7. IEEE 802.11 IEEE 802.11 INTERNET THIS PART HERE

  8. TOOLS Tools of the trade

  9. 802.11 ISSUES Issues

  10. PROTOCOL-SIDE WiFi Deauthentication  Anyone with the right hardware can send a deauthentication frame to the AP and clients connected to it

  11. DEAUTHENTICATION Deauthentication Targets Deauthentication packets

  12. CLIENT-SIDE Identifying APs  Clients can’t differentiate between access points with the same name (ESSID) and will usually just connect to the strongest one.

  13. CLIENT-SIDE No difference London Nairobi ESSID: Java WiFi ESSID: Java WiFi

  14. CLIENT-SIDE Probing for and auto-connecting to APs  Ever wondered how your phone/laptop automatically connects to your office/home network whenever you’re in the area?

  15. CLIENT-SIDE WiFi Selection

  16. CLIENT-SIDE Anytime your device’s WiFi is on and not connected to an AP Home WiFi! Office WiFi! Airport WiFi! Girlfriend’s WiFi! Other girlfriend’s WiFi! Neighbor’s WiFi! Coffee shop WiFi!

  17. WiFi Probes

  18. CONVENIENCE VS SECURITY Why is it built this way?

  19. TRADITIONAL WIFI ATTACKS

  20. EVIL TWIN Evil Twin  A rogue wireless AP that masquerades as a legitimate Wi-Fi access point

  21. EVIL TWIN How it works I’m Safaricom, the real AP. Targets Deauthentication packets No! I’m Safaricom, the real AP. Connect to me!

  22. MiTM Man-in-The-Middle  Grabbing all of the traffic that passes you over a wired or wireless network.

  23. MiTM How it works Username Solomon Username Solomon Password Password123 Password Password123 BANK Username Solomon Password Password123

  24. WIFIPHISHER  A WiFi tool that automates social engineering attacks on WiFi networks  Written in Python and developed by Greek security researcher, @_sophron (George)

  25. DEMO Scenario Swara WiFi Target Swara WiFi

  26. WIFIPHISHER Phishing scenarios

  27. WIFIPHISHER Sample phishing page

  28. WIFIPHISHER Sample phishing page

  29. HARVEST CREDENTIALS Harvest credentials

  30. WIFIPHISHER Taking it further…

  31. DEMO Scenario VIVI WiFi Target VIVI WiFi

  32. MALWARE INFECTION Taking it further – malware infection

  33. MALWARE INFECTION Updating is good for you

  34. MALWARE INFECTION Updating is good for you

  35. MALWARE INFECTION Shell

  36. WHY WIFI? Why did I pick WiFi?  To make it relatable  Some vulnerabilities can’t be fixed by technology

  37. PPT The Security Trinity SECURITY

  38. THE WEAKEST LINK Who is the weakest link?

  39. FOCUS ON SECURITY AWARENESS How vulnerable is your tech are your people?  Security training and awareness programs  Fewer tech focused security tests and more holistic security assessments .  Does your organization have a red team ?

  40. SECURITY FAILURE

  41. STAYING SAFE Staying safe  Be wary with public Wi-Fi .  2 factor authentication .  Use strong passwords . Avoid password reuse .  Turn off your Wi-Fi when you’re not using it.  Update your software, use an antivirus .  Awareness , a little paranoia never killed anyone.

  42. Thanks for your time!

Recommend

WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi

WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi

Advanced Network Security WiFi security Harald Vranken 1 Agenda WiFi security WEP WPA(2) WPA3 2 WiFi IEEE 802.11 standard Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications original

721 views • 48 slides
WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home

WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home

Advanced Network Security (2019-2020) WiFi security Harald Vranken 1 Agenda Introduction to WiFi Open WiFi networks Home WiFi network IEEE 802.11 WEP WPA/WPA2/WPA3 Personal/Enterprise Eduroam Attacks 2

675 views • 45 slides
Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi

Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi

11/20/2019 Overview Basic WiFi concepts Some deployment issues WiFi versions 15-441/641: WiFi Networks 15-441 Fall 2019 Profs Peter Steenkiste & Justine Sherry Fall 2019 https://computer-networks.github.io/fa19/ 2

717 views • 10 slides
SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If you already provide free wifi in your establishment then Zyppee would definitely be of interest, considering the high footfall your business enjoy 's

228 views • 10 slides
WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise

WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise

Advanced Network Security WiFi security Joeri de Ruiter Agenda WiFi security WPA(2) Personal Enterprise WPA3 Key reinstallaton aaacas 2 WiFi IEEE 802.11 standard Some terminology: Staton (STA) is a

479 views • 46 slides
SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If

SOCIAL WIFI PROPOSAL Thank you for your interest in our social wifi re-marketing platform. If you already provide free wifi at your branches then Magico would definitely be of interest, considering the high footfall your branches enjoy.

590 views • 9 slides
WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The

WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The

WiFi On Boats By Digital Yacht Presented by: Nick Heyes CEO Digital Yacht WiFi On Boats The Possibilities WiFi Brand name for wireless networking under IEEE standard 802.11 _________________ Wireless access to the internet Distribute

258 views • 12 slides
NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda

NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda

NVK WiFi Hotspot Solution 2015 Managed, Legally, Future Proof WiFi Hotspot Networks Agenda Basic WiFi Architecture Monetized WiFi Architecture NVKs Solution providing EnGenius Professional AP EnGenius EWS SOLUTION NVK

642 views • 47 slides
WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms

WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms

WIFI Code: WIFI Guest - welcome2 Welcome IMPORTANT - Housekeeping Notice: 1) Fire Alarms / Fire Exit 2) Toilets 3) Please turn Mobile Phones to SILENT Session slides will be circulated on email to ALL attendees. Annual

906 views • 74 slides
WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung

WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung

WiFi Basics & Security Matthias Vallentin vallentin@net.in.tum.de Vorlesung Internetprotokolle SS06 Prof. Anja Feldmann, Ph.D. Outline 802.11 (WiFi) Basics Standards: 802.11{a,b,g,h,i} CSMA/CA WiFi Security

999 views • 42 slides
Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi

Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi

Leeds 7 June 2017 @GlobalCompactUK #GlobalGoalsUK @PRME_UKI @centre_glgr WIFI: Visitor WiFi https://www.youtube.com/playlist?list=PLkDIhymNyNmawvPzi W3jz95LRNr8piTh9 Videos courtesy of Project Everyone http://www.project-everyone.org/

297 views • 25 slides
WiFi Session 17 INST 346 Goals for Today H5 Switched Ethernet WiFi Analysis

WiFi Session 17 INST 346 Goals for Today H5 Switched Ethernet WiFi Analysis

WiFi Session 17 INST 346 Goals for Today H5 Switched Ethernet WiFi Analysis Team 3 LAN addresses and ARP each adapter on LAN has unique LAN address 1A-2F-BB-76-09-AD LAN (wired or adapter wireless) 71-65-F7-2B-08-53

325 views • 20 slides
WiFi-Nano: Reclaiming WiFi Efficiency through 800 ns Slots Eugenio Magistretti Krishna Kant

WiFi-Nano: Reclaiming WiFi Efficiency through 800 ns Slots Eugenio Magistretti Krishna Kant

WiFi-Nano: Reclaiming WiFi Efficiency through 800 ns Slots Eugenio Magistretti Krishna Kant Chintalapudi * Bo idar Radunovi # Ramachandran Ramjee * Rice University * Microsoft Research India # Microsoft Research Cambridge Problem

368 views • 21 slides
INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no

INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no

INTERNET OF TARGETS Leif Nixon Sarcasm a pair vibrator with bluetooth wtf? no wifi no food no wifi no food do you have devices that need your wifi to be working? security cameras thermostats smart appliances smoke alarms smart

1.1k views • 82 slides
Distributed Mobility Management Protocol for WiFi Users in Fixed Network Behcet

Distributed Mobility Management Protocol for WiFi Users in Fixed Network Behcet

Distributed Mobility Management Protocol for WiFi Users in Fixed Network Behcet Sarikaya(sarikaya@ieee.org) Li Xue (xueliucb@gmail.com) IETF 95 draft-sarikaya-dmm-for-wifi-04 1 DMM for WiFi i2rs Client Netconf i2rs Agent OpenFlow 2

733 views • 6 slides
VAEEC Spring 2018 Meeting WELCOME! #VAEECevents Wifi: VisitUR Welcome + Updates #VAEECevents

VAEEC Spring 2018 Meeting WELCOME! #VAEECevents Wifi: VisitUR Welcome + Updates #VAEECevents

VAEEC Spring 2018 Meeting WELCOME! #VAEECevents Wifi: VisitUR Welcome + Updates #VAEECevents Wifi: VisitUR Thank You to Our Sponsors Friend Advocate Supporter #VAEECevents Wifi: VisitUR Agenda 10:30-11:05 Welcome, Opening Remarks,

249 views • 13 slides
WI-FI SMART APPLICATION Download the app Use this QR code tho download Wifi Smart app for OS

WI-FI SMART APPLICATION Download the app Use this QR code tho download Wifi Smart app for OS

WI-FI SMART APPLICATION Download the app Use this QR code tho download Wifi Smart app for OS Android For OS iOS download the app from App store Connection of unit in app Choose Add device Enter name of home WiFi network and password

478 views • 13 slides
WiFi Direct in Android Mobile and Ubiquitous Compu9ng

WiFi Direct in Android Mobile and Ubiquitous Compu9ng

WiFi Direct in Android Mobile and Ubiquitous Compu9ng MEIC/MERC 2015/16 Nuno Santos WiFi Direct: What Is It? Client 1 Wi-Fi Direct allows

1.2k views • 17 slides
Building Smarter Offices with Grandstream Why WiFi Voice and Video 31 billion devices are

Building Smarter Offices with Grandstream Why WiFi Voice and Video 31 billion devices are

Building Smarter Offices with Grandstream Why WiFi Voice and Video 31 billion devices are expected to be connected to the IoT over wireless channels by the end of 2018 IHS Markit Report 71% of all mobile communications occur over a WiFi

776 views • 8 slides
ResFi A Secure Framework for Self-Organized Radio Resource Management in Residential WiFi

ResFi A Secure Framework for Self-Organized Radio Resource Management in Residential WiFi

ResFi A Secure Framework for Self-Organized Radio Resource Management in Residential WiFi Networks Sven Zehl , Antolij Zubow, Michael Dring and Adam Wolisz Motivation IEEE 802.11 (WiFi) is the main access technology in residential

738 views • 24 slides
WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien

WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien

WiFi-Direct Simulation for INET in OMNeT++ Syphax Iskounen , Thi Mai Trang NGUYEN and Sbastien Monnet University Pierre and Marie Curie (UPMC), France Laboratoire dInformatique de Paris 6 (LIP6) 1 2 Outline Introduction to WiFi-Direct

716 views • 17 slides
Welcome to the Healthy Bicester Celebration 2019 Planning the future together WiFi password:

Welcome to the Healthy Bicester Celebration 2019 Planning the future together WiFi password:

Welcome to the Healthy Bicester Celebration 2019 Planning the future together WiFi password: BHGCS #HNTogether19 Welcome from Graeme Kane Cherwell District Council Chief Operating Officer (Deputy Chief Executive) WiFi password: BHGCS

1.03k views • 34 slides
WiFi$Direct$in$Android$ $ Mobile$Compu5ng$ MEIC/MERC$2014/15$ $ Nuno$Santos$

WiFi$Direct$in$Android$ $ Mobile$Compu5ng$ MEIC/MERC$2014/15$ $ Nuno$Santos$

WiFi$Direct$in$Android$ $ Mobile$Compu5ng$ MEIC/MERC$2014/15$ $ Nuno$Santos$ WiFi$Direct:$What$Is$It?$ Client$1$ WiGFi$Direct$allows$devices$to$ connect$directly$to$each$ Acts$as$SoMware$ other$using$methods$similar$ Access$Point$

642 views • 17 slides
ABC GLOBAL SERVICES INTRODUCTION TO FAIRMONT, RAFFLES & SWISSTEL EXCLUSIVE Q4 ABC PROMO

ABC GLOBAL SERVICES INTRODUCTION TO FAIRMONT, RAFFLES & SWISSTEL EXCLUSIVE Q4 ABC PROMO

2015 ABC GLOBAL SERVICES INTRODUCTION TO FAIRMONT, RAFFLES & SWISSTEL EXCLUSIVE Q4 ABC PROMO FREE WIFI & 15% OFF F&B Free WiFi Your clients will Enjoy complementary WiFi during their stay, a value of $20 per day 15% off

363 views • 20 slides

More recommend