Man in the middle in Wlan

Man in the middle in Wlan
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Man in the middle in Wlan securenix 10-13-2005
Posted by securenix on October 13, 2005, 9:49 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi,

How possible is it to make packet injection attack (man-in-the-middle)
in WLAN environment? I want to make a demo and need to somehow
stop/eliminate etc. the messages sent by a particular wireless user and
alter the messages and forward to the server?

Thanks.


Posted by Todd H. on October 13, 2005, 12:01 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Hi,
>
> How possible is it to make packet injection attack (man-in-the-middle)
> in WLAN environment? I want to make a demo and need to somehow
> stop/eliminate etc. the messages sent by a particular wireless user
> and alter the messages and forward to the server?

Quite possible, and is one of the more commonly cited examples of the
trouble with wireless lans actually.

The basic technique is that an attacker who is close enough, or
alternately has enough RF power, or directional enough an antenna can
masquerade as the access point and intercept traffic from the wireless
clients.

Best Regards,
--
Todd H.
http://www.toddh.net/


Posted by on October 13, 2005, 12:05 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
>Hi,
>
>How possible is it to make packet injection attack (man-in-the-middle)
>in WLAN environment? I want to make a demo and need to somehow
>stop/eliminate etc. the messages sent by a particular wireless user and
>alter the messages and forward to the server?
>

See

http://www.informit.com/articles/article.asp?p=353735&seqNum=7&rl=1


to see how to get the wireless user to connect through a rogue access-point you
setup.


David Webb
Security team leader
CCSS
Middlesex University


>Thanks.


Posted by Volker Birk on October 15, 2005, 1:49 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> How possible is it to make packet injection attack (man-in-the-middle)
> in WLAN environment? I want to make a demo and need to somehow
> stop/eliminate etc. the messages sent by a particular wireless user and
> alter the messages and forward to the server?

It's easy to send and receive frames with an arbitrary MAC address.
The possibility to use this for a MITM attack depends on the protocols
used in the higher layers.

Yours,
VB.
--
"Ich bin ein freier Mensch und werde jetzt von meinen Freiheitsrechten
Gebrauch machen - und zwar ausgiebig - natürlich nur in dem Rahmen, den
Otto Schily mir noch zur Verfügung stellt."
Wolfgang Clement am 10.10.05 als Noch-Superminister


Similar ThreadsPosted
state of wlan August 23, 2007, 2:13 am
WLAN guerilla, various attacks with DoS effect April 4, 2005, 3:06 pm
Re: Man in the middle worries January 10, 2008, 3:30 pm
"New Universal Man-in-the-Middle Phishing Kit" ? January 17, 2007, 6:58 am

The site map in XML format XML site map

Contact Us | Privacy Policy