Recent Topics
2 cycle with catalyst - carb settings?
by cjolson140 - 06/02/20 01:22 PM
Scam: Ghana $+2 - US $-2
by pandus13 - 06/02/20 01:09 PM
Motorcycle rear shock rebuild
by Reddy45 - 06/02/20 12:45 PM
2016 Lexus RX350 Oil Change change
by Toros - 06/02/20 12:43 PM
Tire Mobility Kits
by wings&wheels - 06/02/20 12:06 PM
Worst accident you've witnessed
by Dave Sherman - 06/02/20 12:04 PM
Shock Fluid
by splinter - 06/02/20 11:21 AM
Michelin X-Ice 4 North for Canada ...
by odie - 06/02/20 11:03 AM
Rockauto code expires 8/2
by gallydif - 06/02/20 08:19 AM
The worst job you ever had?
by Chris142 - 06/02/20 08:04 AM
P218F on my Ford PSD
by Donald - 06/02/20 06:34 AM
Kudos to Griot's
by Egg_Head - 06/02/20 05:43 AM
Exide Battery files for bankruptcy
by Randol - 06/02/20 04:34 AM
Just one more wax question.
by rrretiree7 - 06/02/20 01:49 AM
Removing stuck bolts- interesting technique
by rubberchicken - 06/02/20 12:47 AM
Unless it is a misprint?
by 340_Magnum - 06/01/20 10:25 PM
Raymond Weil 5590 Watch Battery Replacement
by maverickfhs - 06/01/20 09:22 PM
Echo SRM 230 idling high
by CDX825 - 06/01/20 08:40 PM
Newest Members
NewMex, RandyN11049, bbrtuning, chapys, DaaBoss
71593 Registered Users
Who's Online Now
105 registered members (55hambone, alarmguy, 2015_PSD, 97tbird, 4WD, 10 invisible), 2,524 guests, and 31 spiders.
Key: Admin, Global Mod, Mod
Forum Statistics
Forums67
Topics306,060
Posts5,286,630
Members71,593
Most Online4,538
Jan 20th, 2020
Donate to BITOG
Print Thread
Hop To
Page 1 of 2 1 2
WiFi Hacker Devices #5434671 05/20/20 10:32 PM
Joined: Jul 2010
Posts: 23,680
Z
ZeeOSix Offline OP
OP Offline
Z
Joined: Jul 2010
Posts: 23,680
Apparently there are devices people can buy so that they can search for broadcasting WiFi networks in the neighborhood and allows them to see the IP address, password, etc, and can log into someone's WiFi modem/router and change it's settings, etc.

Are these devices legal, and is it illegal for someone to use such a device?

If that's true, is there any settings in the modem/router than can be set to stop something like that?

Re: WiFi Hacker Devices [Re: ZeeOSix] #5434682 05/20/20 11:00 PM
Joined: Jun 2013
Posts: 2,133
M
mattwithcats Offline
Offline
M
Joined: Jun 2013
Posts: 2,133
Change your Admin password,
Hide your SSID,
Enable MAC address filtering,
And keep your firmware updated...

Last edited by mattwithcats; 05/20/20 11:04 PM.

2009 Smart Pure
Pennzoil Platinum Euro 0W-40, Wix XP 51356 filter, 45 mpg...
185/55R15 General HP tires, "H" speed rated, 44 psi (300 kpa)
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434686 05/20/20 11:09 PM
Joined: Dec 2002
Posts: 44,055
J
JHZR2 Offline
Global Moderator
Offline
Global Moderator
J
Joined: Dec 2002
Posts: 44,055
Not clear to me how they would see the IP address, password, etc. unless they logged in using a default set of credentials.

Assuming SSID is set, its not clear to me that they could even get to the router login screen to mess with other things... Though Id suspect that SSID could be hacked or intercepted.

Looking forward to learning on this thread.

Re: WiFi Hacker Devices [Re: ZeeOSix] #5434717 05/21/20 12:44 AM
Joined: Aug 2017
Posts: 1,740
sloinker Offline
Offline
Joined: Aug 2017
Posts: 1,740
I know that I see many of my neighbors wifi's when setting up devices. It would be interesting if password protocols weren't set or they were easily figured out. I won't waste my time but I suppose if someone was inclined they could cruise around and find some unguarded network to exploit.


'16 Tiguan TSI Vaico 5W40
'15 VW Golf TDI Red Line 5W30 Euro
'15 VW Golf Sportwagen TDI M1 ESP 5W30
'14 Dodge Grand Caravan 3.6 Valvoline 5W20 Semi Synthetic
'64 Plymouth Fury440 Pending
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434718 05/21/20 12:52 AM
Joined: Apr 2016
Posts: 894
K
Kibitoshin Offline
Offline
K
Joined: Apr 2016
Posts: 894
An unsecured wireless router is begging to be hacked. Newer wireless routers won't enable internet connectivity unless a admin password is set and wifi password is set.

For someone to truly hack your router would mean physical access to the router or someone in your driveway hours trying to sniff network packets/bruteforcing access to your router.

Last edited by Kibitoshin; 05/21/20 12:53 AM.

Shin Gekiretsu Shin'ou'hou
02 Chevy Silverado C1500 V8 5.3L
Intertrashional maXXXforce 4300 Box Truck
Re: WiFi Hacker Devices [Re: Kibitoshin] #5434727 05/21/20 01:34 AM
Joined: Jul 2010
Posts: 23,680
Z
ZeeOSix Offline OP
OP Offline
Z
Joined: Jul 2010
Posts: 23,680
Originally Posted by Kibitoshin
An unsecured wireless router is begging to be hacked. Newer wireless routers won't enable internet connectivity unless a admin password is set and wifi password is set.


On a secured WiFi modem with a password set by the user, is there any way for someone with a WiFi hacking device to see the password and get into a password protected modem to mess with the modem settings?

Originally Posted by Kibitoshin
For someone to truly hack your router would mean physical access to the router or someone in your driveway hours trying to sniff network packets/bruteforcing access to your router.


Let's say it's someone who lives in the neighborhood that can sit in their house and sniff all the networks his device can pick up.

Re: WiFi Hacker Devices [Re: ZeeOSix] #5434735 05/21/20 01:56 AM
Joined: Jun 2013
Posts: 2,133
M
mattwithcats Offline
Offline
M
Joined: Jun 2013
Posts: 2,133
From the National Security Agency, Systems and Network Attack Center (SNAC)

Recommended 802.11 Wireless Local Area Network Architecture

I332-008R-2005

You only need to read Part 1, and especially Part 2. Part 3 and beyond gets very technical...

http://www.itsecure.hu/library/file/Biztons%C3%A1gi%20%C3%BAtmutat%C3%B3k/Wifi/Recommended%20802_11%20Wireless.pdf


2009 Smart Pure
Pennzoil Platinum Euro 0W-40, Wix XP 51356 filter, 45 mpg...
185/55R15 General HP tires, "H" speed rated, 44 psi (300 kpa)
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434775 05/21/20 05:25 AM
Joined: Oct 2012
Posts: 2,599
M
michaelluscher Offline
Offline
M
Joined: Oct 2012
Posts: 2,599
Your a solid 20 years late with your concerns

If it bothers you so much, it might be time to brush up on the basics of network security

https://www.edureka.co/blog/what-is-network-security/

https://en.wikipedia.org/wiki/Wireless_security

https://heimdalsecurity.com/blog/home-wireless-network-security/

There is no "hacker devices" per se, just repurposed network hardware, I don't really care if a Facebook post tells you otherwise

Just like a motor vehicle isn't a "murder weapon", It's just unfortunately used as one sometimes


'17 CTS Performance AWD 3.6 11K
'06 Camry SE 3MZ-FE 146K
'06 Taurus SE Vulcan 65K
'01 Villager Estate VG33E 55K
'83 Grand Prix LJ 305 SBC 56K
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434791 05/21/20 06:04 AM
Joined: Jan 2016
Posts: 220
S
Soggydog Offline
Offline
S
Joined: Jan 2016
Posts: 220
Funny I read this today...
I got to work Monday and either my phone or my tablet would not connect to our WiFi at work. I didn't think much of it since the network is commonly down, it's very slow and limits content. I went to notify my boss I was taking lunch and saw him perusing his inbox. I asked if the WiFi password had been changed. He informed me over the weekend (when noone was supposed to be there) our WiFi was hacked from a Galaxy 5 from the parking lot so they cut wireless access for now. Apparently the hacker was attempting to access the cities network work through our department and whatever security software in place blocked it.
Our WiFi password is a random mix of numbers and letters in caps and lowercase. Not everyone gets the password and it would be mostly impossible to guess.


Currently running...
2011 Ford F250 4x4 6.7L, 2011 Toyota Camry SE 2.5L, 2002 Dodge Caravan 3.3L,
2012 Honda Rincon,2012 Honda Rancher AT,09 Honda Trx90
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434871 05/21/20 08:05 AM
Joined: Jan 2015
Posts: 1,775
R
ragtoplvr Online Content
Online Content
R
Joined: Jan 2015
Posts: 1,775
I have a friend that lives in a mixed neighborhood. As in they would steal a wheelchair. He named his router B.A.T.F. surveillance van.

Caused some fear.

I suppose DEA and Immigration would have been entertaining.

Rod

Re: WiFi Hacker Devices [Re: mattwithcats] #5434883 05/21/20 08:22 AM
Joined: Apr 2008
Posts: 42,283
O
OVERKILL Online Content
Online Content
O
Joined: Apr 2008
Posts: 42,283
Originally Posted by mattwithcats
Change your Admin password,
Hide your SSID,
Enable MAC address filtering,
And keep your firmware updated...


The top one and the bottom one are the only ones on that list that really help, the middle two just give somebody a false sense of security.


2019 RAM 1500 Sport - Mobil 1 EP 0w-20, FRAM Ultra
2020 Grand Cherokee SRT - Ravenol SSL 0w-40, FRAM Ultra
Re: WiFi Hacker Devices [Re: mattwithcats] #5434884 05/21/20 08:23 AM
Joined: Apr 2008
Posts: 42,283
O
OVERKILL Online Content
Online Content
O
Joined: Apr 2008
Posts: 42,283
Originally Posted by mattwithcats
From the National Security Agency, Systems and Network Attack Center (SNAC)

Recommended 802.11 Wireless Local Area Network Architecture

I332-008R-2005

You only need to read Part 1, and especially Part 2. Part 3 and beyond gets very technical...

http://www.itsecure.hu/library/file/Biztons%C3%A1gi%20%C3%BAtmutat%C3%B3k/Wifi/Recommended%20802_11%20Wireless.pdf


That's from 2005, FYI.


2019 RAM 1500 Sport - Mobil 1 EP 0w-20, FRAM Ultra
2020 Grand Cherokee SRT - Ravenol SSL 0w-40, FRAM Ultra
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434897 05/21/20 08:46 AM
Joined: Apr 2008
Posts: 42,283
O
OVERKILL Online Content
Online Content
O
Joined: Apr 2008
Posts: 42,283
Originally Posted by ZeeOSix
Apparently there are devices people can buy so that they can search for broadcasting WiFi networks in the neighborhood and allows them to see the IP address, password, etc, and can log into someone's WiFi modem/router and change it's settings, etc.

Are these devices legal, and is it illegal for someone to use such a device?

If that's true, is there any settings in the modem/router than can be set to stop something like that?


It's called a laptop LOL

Seriously though, what these "devices" would be are simply some piece of cheap kit, likely running Linux. No different than a laptop setup for the same purpose. They likely come pre-loaded with Airsnort and some exploit utilities; some script kiddie software.

War Driving was spectacularly easy back in the day, things didn't start to get difficult until WPA-TKIP came out, but even at that time there were TONS of wireless networks still using WEP, which was extremely easy to break into. Simplified version: You'd snag a capture, which would give you both SSID and a MAC for a client (in case it was hidden and filtering was on) and you'd just clone that MAC on your hardware and it was not difficult to crack WEP using some very fast, automated tools, allowing you to then participate on that network as an authenticated client.

TKIP made things much more difficult from an encryption perspective, and it was deemed a suitably "secure" interim replacement for WEP until vulnerabilities started to be discovered:
https://community.arubanetworks.com...dge-Base/TKIP-Vulnerabilities/ta-p/25384

On a network without key rotation, obviously the mitigation mechanism (short key rotation intervals) wasn't workable and that still didn't stop people from using the older brute force table method.

Of course even with TKIP, you were looking at a period of time to do this, requiring proximity. This meant they'd be an unlikely target for wardriving.

The best things you can do are:
1. Ensure that you are using WPA2-AES with no legacy support enabled
2. Ensure that you are using a complex network key
3. Ensure that you have the latest firmware on your device to minimize exposure to bugs/ exploits
4. Ensure that you've got a complex admin password on your device
5. Change your wireless power levels to only suitably cover the space you need it to

Some gear will give you to the option to log, and notify you of devices that are trying, and failing, to authenticate.

When WPA3 starts becoming more common, assuming all your devices support it, switching to that would also be advisable. But the above list still applies.


2019 RAM 1500 Sport - Mobil 1 EP 0w-20, FRAM Ultra
2020 Grand Cherokee SRT - Ravenol SSL 0w-40, FRAM Ultra
Re: WiFi Hacker Devices [Re: ZeeOSix] #5434911 05/21/20 09:06 AM
Joined: Jul 2013
Posts: 900
T
The_Nuke Offline
Offline
T
Joined: Jul 2013
Posts: 900
Originally Posted by ZeeOSix
Apparently there are devices people can buy so that they can search for broadcasting WiFi networks in the neighborhood and allows them to see the IP address, password, etc, and can log into someone's WiFi modem/router and change it's settings, etc.

Are these devices legal, and is it illegal for someone to use such a device?

If that's true, is there any settings in the modem/router than can be set to stop something like that?


Odds are that a home’s network router, if compromised, won’t be compromised by a person driving around a neighborhood snooping wireless credentials. Most that get compromised will be accessed from the internet side by an automated script that guesses the admin password based on the router maker’s known default admin passwords or takes advantage of a firmware vulnerability to get in and take control.


2012 Charger Pursuit aka "The Bacon Hauler"
- 5.7L + NAG1 (A5) + 3.07 (215mm)
Re: WiFi Hacker Devices [Re: The_Nuke] #5434943 05/21/20 09:41 AM
Joined: Apr 2008
Posts: 42,283
O
OVERKILL Online Content
Online Content
O
Joined: Apr 2008
Posts: 42,283
Originally Posted by The_Nuke
Originally Posted by ZeeOSix
Apparently there are devices people can buy so that they can search for broadcasting WiFi networks in the neighborhood and allows them to see the IP address, password, etc, and can log into someone's WiFi modem/router and change it's settings, etc.

Are these devices legal, and is it illegal for someone to use such a device?

If that's true, is there any settings in the modem/router than can be set to stop something like that?


Odds are that a home’s network router, if compromised, won’t be compromised by a person driving around a neighborhood snooping wireless credentials. Most that get compromised will be accessed from the internet side by an automated script that guesses the admin password based on the router maker’s known default admin passwords or takes advantage of a firmware vulnerability to get in and take control.


Yes, I believe the most common compromises happen either this way, or from the LAN side by an infected/compromised client. In fact the latter was experienced by a rash of users a couple of years ago where malware would get on a host which would then hit the router with the attack.


2019 RAM 1500 Sport - Mobil 1 EP 0w-20, FRAM Ultra
2020 Grand Cherokee SRT - Ravenol SSL 0w-40, FRAM Ultra
Page 1 of 2 1 2
Previous Thread
Index
Next Thread

BOB IS THE OIL GUY® Powered by UBB.threads™