3. What do you want to steal from your neighbours?

What do you want to steal from your neighbours?

Nope, it's pretty illegal. It also depends on whether the router running WPS or not. (There's a good chance it is). Read on for a crash course on 'breaking in'.

Basically when you connect to a Wi-Fi network (with WPA/WPA2 security or similar), you enter a password typically between 8-128 characters in length. This can be a pain in the ass especially if the key is something like a6d4dfaec13... You get the idea.

So, to avoid this problem and allow someone to easily connect a device to the router, a simpler way of authenticating (while supposedly maintaining network security) was invented. They called it WPS. On most home routers, it runs alongside the traditional methods to authenticate and connect.

The basic principle of WPS is that instead of entering a massive password, you can enter an 8 digit PIN code that's hard coded to the router and connect, completely bypassing the big password.

Sounds a bit dodgy, right? It gets worse. Not only does having an 8 digit PIN code reduce the total possible password combinations by billions upon billions, the protocol has a flaw that can be used to tell of the first 4 digits of an attempted PIN are correct. So now, it's not a game of guessing an 8 digit number, it's effectively down to 4 digits with a little more work after guessing them.

Now we know we can use brute force effectively (ie. Not take 50 years to break in), we can make some tools to make the process faster. That's what kali linux is for (among many, many other things). It has hundreds of tools to so many evil things.

Using the aircrack suite included with kali to produce a list of wireless networks in the local area, we can check if they're running WPS and get their MAC address. For the networks that are running WPS, we stand a chance of breaking in.

Using the MAC assess we obtained, we can use a handy program called reaver that will do the dirty work for us.

Set Reaver to work on a wireless network and within hours, maybe days, it'll produce the passphrase to the network, along with it's WPS PIN.

the kicker

Some router manufacturers are dumb shits and set the key to 01234567 or something similar instead of randomizing them for each router

protect yourself

If you've got a Wi-Fi network at home, chances are it's running WPS. In most cases, the router will have a option buried in it's user management section to disable WPS. If not, consider installing tomato (custom firmware) or buy a new router.

the good news

Because WPS was proven to be an utterly useless protocol back in 2011, router manufacturers have started either excluding it from their products or providing extra protections, such as lockout periods for X number of wrong PINS, total lockouts (requiring the router owner to log in and reset the warning) and even (on corporate setups I think) send email alerts if the router thinks someone's fucking around with it.

/r/AskReddit Thread Parent
Previous
Next

Recently removed from /r/AskReddit

If you were in charge, how would you solve America’s mass shooting problem without it devolving into further violence or chaos? How have you almost died? [serious] What is the worst physical pain you have ever experienced? What are you extraordinarily good at and how did you get that way? US military veterans and active personell who still support the GOP after 217 out of 222 republicans voted to cut veterans care. Why? What is the most interesting story you have of an ancestor (past your parent’s generation)? What should be the 8th deadly sin? What’s something that changed/disappeared because of Covid that still hasn’t returned? In honor of Jerry Springers passing, what's the most Jerry Springer situation you have witnessed or experienced in real life? What’s something that changed/disappeared because of Covid that still hasn’t returned? Women of Reddit, what are some safety precautions/tips that you would highly recommend for any woman who is going on a date? What’s a life-saving tip you think everyone should know? What is the biggest secret you've ever kept from your family? divorced people of reddit, when did you know it was over? [serious] What is the biggest secret you've ever kept from your family?

More Random Comments

What's something Doom Eternal does better? Les Pubs pour Voitures Rançaises des années 80 avaient une sacrée allure, c'est incontestable. Break My Contract, Steal My Money - A Solidity Riddle (Part 2) Am I an asshole for being annoyed at this family that comes to the tennis courts every day at 5pm when people are getting home from work to run around SCREAMING and jumping on the net? I know kids are kids and they want to play, but seems like a pretty inconsiderate move by the parents. My first 100% of 2023! Super cute game with a fun/twisted story with very relatable characters for probably anyone who plays it! loved it :) I am new to 100% achievement completing and this one was so fun and easy. Finished just by playing the game (no random collecting nonsense or dumb ones). Russia preparing to mobilise extra 500,000 conscripts, claims Ukraine | Russia | The Guardian Only use Chinese or southeast Asian-owned companies Met Alan Keating at the Oakland airport (can be seen on the couch to the right) low carb meal replacement? I need guidance Withybush hospital, haverfordwest Are we stuck living our life this way? What is the biggest turn off? Three-quarters of public support pharmacists prescribing their medication, survey results show Virginia police say 6-year-old student shot teacher at Newport News elementary school