Hey BH'ers - Wifi Traffic Sniffing?

[krazyjosh5]

Anyone know, off the top of their head, how to sniff Wifi traffic and.. erm... filter out Google searches from traffic captures...

I keep running into AirPCap which is a $200 dongle that I dont want to buy. Surely theres some software for this.

PS - Consider this a free tip on how to get search trend data

 

[Vapor]

 Dogpile - SearchSpy

also, for the wifi shiz you'll likely need to forget about it, not worth the trouble although it is possible to do what you describe.

 

[krazyjosh5]

great link, thanks vapor

for the wifi part, i dont think its that much trouble. all one needs to do is take a huge data capture and then filter based on, say, GET requests to Google (simple filter). I just dont know what tools are available to do this as wifi network tools tend to get very technical and im looking for a simple usage.

also, i see opportunity in this as i go to a school with 500 student classes and everyones on unsecured wifi not to mention the geotargeting possibilities of this are pretty good ('Hey NJ Frank St. Starbucks Customers... click here!')

 

[chatmasta]

Sounds like a pretty good way to get expelled/arrested, but if you're interested: Look At All Of These Passwords!

 

[meln]

I'm guessing Ethereal can do this, it can do just about anything related to packet sniffing.

 

[krazyjosh5]

i dont think i could get ethereal to do it. ethereal is primarily intended for wired networks from my reading...

 

[chatmasta]

From the article I linked to:

These were obtained using nothing more than a linux laptop, a cable modem, ettercap (running ARP spoof and MiM gateway) and a bit of coffee.

 

[josephsaleh]

i dont think i could get ethereal to do it. ethereal is primarily intended for wired networks from my reading...

Nah, Ethereal (now called WireShark) can sniff wireless. It places your NIC into promiscuous mode be it wired or wireless, and captures everything passing through. It doesn't discriminate. You then enter in 'google' into the 'filter by' and you will get your results.

And yeah, if you want to make the best out of wifi and packet sniffing i'd suggest Linux.

I don't think this method, however, would really be ideal for what you want to do. The results would be too small, unless you had access points spread all over the city in a wireless mesh of promiscuous access points with a snort box just collating all the data for you to analyze in your bunker. So realistically, wifi sniffing is best off for gaining personal or sensitive information about certain people to use to further your entry into their home or network. Not to sell them things.

You get points for thinking up a fresh idea though.

 

[yast]

1. if you are into linux,get BackTrack at Remote-Exploit.org - Supplying offensive security products to the world ,it got all the tools you need
2. learn to use the sniffer wich fits your needs,Ethereal is one of them and there is even a windows version,if that works you dont have to download the cd image,but it has some goodies on it.
3. dont get caught

 

[Someone]

Simplest solution:

Use Linux and Ethereal. Ethereal in Windows can't sniff wireless traffic.

 

[rograndom]

Or, if you want to be really evil, use this as a starting point:

hxxp://www.evilscheme.org/defcon/

And instead of replacing every image with goatse, you could...

Sniff for keywords and replace them with your affilate links...

Replace all google adsense pub-ids with yours...

Make all requests for ebay.com bounce through your affilate link to get your cookie...

Have everyone on the wireless network "friend" you when they visit myspace / facebook...

 

[krazyjosh5]

heh goddamn thats a great idea.

500 person auditorium. mitm. push all to adsense page.

too risky, though. not looking to get expelled here. but oh the possibilities.


holy shit, were on to some potentially awesome, completely unethical BH, possibly illegal shit here...

is this illegal? mitm attacks that push someone or replace content (ie google pub ids) on an open wifi network?

fuck if you wanted to get really into this, you could do WarSense Driving. create a program to scan traffic and automatically crack wep networks open, replace pub ids, etc.

 

[productionhead]

better near apartment buildings.

 

[krazyjosh5]

bump for legality question. hoping someone has some experience in this (marketing related or not)?

 

[josephsaleh]

bump for legality question. hoping someone has some experience in this (marketing related or not)?

Is it illegal? It's a very grey line. It can be argued open networks are the same as public radio signals. They come into your house, and they broadcast themselves to you. If you didn't want other people listening in or tampering then you'd secure it. But that argument doesn't hold much weight in the real legal system. There are still laws against data tampering and blah blah.

So to put it simply, it would be illegal. would you get caught doing it? no. The only way you would gt caught if someone reported your webpage which you were spamming them with, and then authorities tracked down who owned the website, which you could claim you had no idea why people were spamming your website, so again, there'd be no charges. But if you were doing random wifi sniffing or even mitm attacks which lead to pages which had nothing to do with you, you'd be fine.

Going on from this concept though, having scripts which worked like a 'targeted marketing' mitm. Instead of spamming everyone to a general adsense page, have a script which picks up what they were searching for, and send them there instead.

This is all hypothetical of course.