From the category archives:

Tips & Tricks

How WPA wireless networks are hacked, and how to protect yourself


How WPA wireless networks are hacked, and how to protect yourself As wireless networks evolve, so does the security encryption needed to protect them.  As usual, the methods to hack this encryption evolves just as fast, so let’s take a look at how its done and how to protect yourself from these types of threats.

WEP-based encryption was the first to be developed, and therefore first to be easily cracked and made vulnerable.  Then came WPA-based encryption which took the security up a level and introduced some new methods.  Let’s look at some differences between the two.  WEP, or Wired Equivalent Privacy, is a basic form of wireless security where both the “WAP” and the user are configured with an encryption key of either 64 bits or 128 bits in HEX.  When someone connects to the network, the access point issues a “random challenge.”  The user inputs the key which is encrypted with the “challenge answer.”  If the answer is correct, the user is granted access to the network.  WEP is easy to crack because the network key required to gain access is static, and with very little effort can be figured out.

WPA-based encryption, or Wi-Fi Protected Access, is similar in theory to WEP but doesn’t use a static network key, but rather a “Temporal Key Integrity Protocol (TKIP),” which changes keys with every data packet sent or received.  This by itself makes WPA a very secure method for wireless networks, but the problem is that in most home-based environments, a “shared pass phrase” is used to access the network.  If this pass phrase is any word found in the dictionary, a hacker can crack it through what is known as a “brute force dictionary attack.”  While it may take a long time, it can be done.

Since WEP can be easily cracked, we’ll focus on educating you on how your WPA-encrypted wireless network can be cracked and made vulnerable to attacks as well, and how to prevent this from happening, or at least lower your risk considerably.  With WPA, there’s two different versions; PSK and RADIUS.  In the simplest terms, PSK is hackable and RADIUS is not.  PSK uses the TKIP process I mentioned above to authenticate the network, and therefore makes it vulnerable to cracking.  While WPA is indeed much more secure than WEP, only WPA-RADIUS is un-crackable.  Ninety percent of access points and home wireless routers don’t even support WPA-RADIUS, only advanced enterprise-based routers do, which leaves most WPA-secured home-based networks almost as vulnerable as WEP-secured networks.

[click to continue…]

{ Comments on this entry are closed }

WEPCrack

WEPCrack is a tool that cracks 802.11 WEP encryption keys using the latest discovered weakness of RC4 key scheduling.

Tool Capabilities :

The current tools are Perl based, and are composed of the following scripts:

1) WeakIVGen.pl – This script allows a simple emulation of IV/encrypted output that one might observe with a WEP enable 802.11 Access Point. The script generates IV combinations that can weaken the secret key used to encrypt the WEP traffic

2) prism-getIV.pl – This script relies on output from Prismdump [or from Ethereal captures if libpcap has been patched for 802.11 monitor

mode], and looks for IVs that match the pattern known to weakned secret keys. This script also captures the 1st byte of the encrypted output and places it and the weak IVs in a logfile.

3) WEPCrack.pl – This script uses data collected or generated by WeakIVGen to attempt to determine the secret key. It will work with either 40bit or 128bit WEP.

Additionaly, a script prism-decode.pl is included that will decode most 802.11 frame types. This tool is intended to be used with prismdump, but could also be used against Ethereal 802.11 saved captures. It might be useful for capturing SSIDs, AP MAC addresses, or authentication data.

[click to continue…]

{ Comments on this entry are closed }

Hide Drive


Hide Drive in My Computer

Hide-Drive

This setting allows you to control which drives are visible in My Computer and Explorer. It is possible to hide all drives or just selected ones.

Open your registry (press win+r and type regedit , hit enter )
goto

[HKEY_CURRENT_USER\Software\Microsoft\Windows\
CurrentVersion\Policies\Explorer]

and find or create the DWORD “NoDrives” there by right clicking on explorer -> NEW -> DWORD value .

[click to continue…]

{ Comments on this entry are closed }

Restore Task Manager, Regedit and Folder Options Disabled by Virus


Restore Task Manager, Regedit and Folder Options Disabled by Virus… !!

Let’s face it. All of us have been infected by virus before. Even if you have anti-virus installed, you can still be infected by a new or custom virus that is not recognized by your anti-virus. Sometimes after removing the virus completely from our system, you’ll face new problems such as you can no longer bring up Windows Task Manager from CTRL+ALT+DEL. You get the error message saying “Task Manager has been disabled by your administrator”….




You think that it’s easy to fix this problem by going to Registry Editor but you can’t! You get the error message “Registry editing has been disabled by your administrator”.

[click to continue…]

{ Comments on this entry are closed }

← Previous Entries

Next Entries →