Collect Wi-Fi information during driving

0X01 reason

Did friends who saw the ghost notice that they were driving a van mobile attack when they finally arrested the Big Brother group?

Here is a word called War Driving.

War Driving: A Driving attack, also known as Access Point ing, is an activity that scans wireless network names when Driving around a company or a residential neighborhood.

0X02 attack preparation

To drive an attack, you must have a car, a computer (LAPTOP), a wireless Ethernet NIC working in a hybrid mode, and an antenna mounted on the top of the car or in the car.

Because a wireless LAN may only be within the scope of an office building, external users may intrude into the network, get free internal network connections, and may also obtain some records of the company.

And other resources. With comprehensive antennas and GPS, attackers can systematically map 802.11b/g/n wireless access points.

Driving attack is actually used to collect information in reality. What information is collected?

Let's take a look at two figures:

It is the result of a joint query performed by the sqllite database and is also part of the collected information.

Bssid: The hardware address of a wireless route or device.

Lat; lon: GPS information of the wireless device up to the longitude and latitude

Ssid: the name of the wireless device.

Capabilities: You can see that this is the encryption method for wireless devices.

Next let's take a look at this image:

An image is displayed as a map based on the information above the first image ~

In, all green is unencrypted wireless networks, and the yellow is wep encryption. The red is wpa/wpa2 encryption.

What is the purpose of this? Imagine how to drive a car and take-out bag, and all the information about wireless networks around it will be collected, with a lot of scalability.

0X03 Key Analysis

How can this information be obtained and displayed on the map? In fact, two things are needed. One GPS is used to record the current location, and the other is the wifi device.

Wifi information. It is not enough to record wifi information around the current GPS location.

Device requirements:

In general, if you want to be professional and have a large amount of precise information, you need an external usb gps, a laptop, a Wi-Fi gain antenna, and a car.

The well-known bt5 comes with a kismon which can be used for video demonstration on google youtube.

However, these conditions are a little harsh, but my method is as long as you have an android phone. Congratulations, you can play war driving. Why?

Currently, GPS and wifi are essential for android phones. As long as we write an APP to collect information based on the above principles, will it be okay? Unfortunately, some of the apps have been written.

We used it directly.

First look at the desktop icon after the installation:

Information expression:

1. The new data volume in the database, that is, the collected data (there will be a lot of transferred data when the mobile phone is put in the pocket)

2. Total data volume in the database

3. Current GPS information

4. wifi information that can be received in the current region

How can I view this information on a map? This author is still very considerate. kml format can be exported from the database (this is what google map uses)

Switch to the data column-"KML Export DB", and then collect and insert the data to the wightle directory under the root directory of the storage device (memory card) on the computer.

And sqllite database information

In fact, kml is the data format of xml. You just need to change the name.

 

Open google earth and select Open file to find the kml you just exported.