How secure is your local network against man in the middle attack

When I was researching a security flaw in the wireless protocols I came across an interesting video in youtube. Showing a “man in the middle” attack, done using a windows pc. I`ve heard this attack was easy using a Backtrack OSs, but never expected it would be that easy using a windows PC. I managed to hack my personal network(which I consider secure) for about 5 minutes.
The idea of the “man in the middle” attack is very simple and it is a great way of showing you how vulnerable your data and passwords are. Once connected to the target network and found your victim, your pc lies to the router that it is the target PC, while in the same time lies the target PC that it is the router. That way the target PC sends all its packets to you(the attacker). These packets may contain a lot of worthless data, but may contain HTTP POST packets with passwords for your favorite sites(always use https by the way).

There is a great video showing the attack and the needed tools. And I`m attaching it below. I sucessfully tried this on my local network, so if you have any questions write them in the comment section below.

Advertisements

The ease of access has a new name…introducing MyDitto NAS

When I was reading the tech news today I came across an interesting network device, that is worth mentioning. No, the device is not just another NAS. The thing that differs it from any other device is the ease of access in the home network, as well as from a remote connection. The only thing you need to access the NAS is have its special flash key and remember its domain name. Yes it is that simple.

The device features two 3.5 mm hard drives and two flash keys(you can program every flash drive from the device itself).

If I cought your attention you can read more about the device in its home page here.

Everything about D-Link DIR-825

D-Link DIR-825
Review Cnet
Specifications You can find them on the router`s page – here
Firmware – Ver. 2.02NA for rev.B Click here to download
Manual Click here
Factory reset(Hard reset) While the router is powered on press and hold the reset button for 5-10 sec. Release the button and wait untill the router boots up (1 min). @ FAQ

Streaming high-definition through wireless

On this year`s CES intel announced a technology for wireless streaming hi definition from you supported pc to a device connected to your TV`s HDMI. The technology is pretty much that…streaming amazing amounts of information wirelessly. The interesting device is saving you lots of meters expensive HDMI cable, while letting you stream movies from your laptop on your TV as easily as just playing it.

Read more @ Slashgear

Streaming media across your network

Recently I bought a TV tuner and mounted it on my desktop pc, but soon after that I thought that it would be cool if I could stream the Video and Audio from the tuner through my home network. That way I could watch TV on my laptop without having an actual tuner in it. I started searching and after few minutes I found the solution. It is called VLC media player and it is pretty straight forward. Maximum 10 minutes after I installed I was streaming the TV in my whole home network. You can use it to stream all kinds of video and audio and also watch streamed content.

You can find a step-by-step tutorial on how to stream TV signal from your tuner HERE and HERE

Everything about D-Link DGL-4500

D-Link DGL-4500
Review Cnet
Specifications You can find them on the router`s page – here
Firmware – Ver. 1.22NA Click here to download
Manual Click here
Factory reset(Hard reset) Step 1: With the unit on, place a paper clip into the hole on the back of the unit labeled Reset.

Step 2: Hold paper clip down for 10 seconds and release.

Note: Do not repower unit during this procedure.

Step 3: The unit will reboot on its own. Once the WLAN light stops blinking, the unit is reset.

Resetting the router does not reset the firmware to an earlier version. It will change all settings back to factory defaults.

Note: The factory defaults username is admin, and there is no password.

Read more @ FAQ

Test your network by hacking it

Nowadays, almost each one of us owns a wireless router.But the wireless encryptions give us a false sense of security. In this article I`m going to show you a way for you to test your own network for vulnerabilities. The only way to make sure your personal information remains personal is secure your home network. The best way to do that of course is try to hack it yourself. This way when you find its vulnerabilities you might be able to fix them. If you think that your WEP or WPA-PSK network encryptions is unbrakeable, you are wrong.

The software I`m talking about is infact a whole operating system based on linux. As the developers wrote “BackTrack is intended for all audiences from the most savvy security professionals to early newcomers to the information security field. BackTrack promotes a quick and easy way to find and update the largest database of security tool collection to-date.”

There is a LiveCD and Thumbdrive version of the software, so you don`t have to install it on your HDD to try it. It is pretty straight forward software if you don`t understand something you can find most of the features explained in Google and even YouTube.

This are just a few of the things you can do with backtrack. It is an amazing OS, showing us how vulnerable our networks are.

Of course you can ask your questions in the comment section.

Download Backtrack 4 ISO

Make sure to visit their home site and read the Backtrack 4 tutorial here

Everything about D-Link DIR-655

D-Link DIR-655
Review Cnet
Specifications You can find them on the router`s page – here
Firmware – Ver. 1.33NA Click here to download
Manual Click here
Factory reset(Hard reset) Step 1: With the unit on, place a paper clip into the hole on the back of the unit labeled Reset.

Step 2: Hold paper clip down for 10 seconds and release.

Step 3: The unit will reboot on its own. Once the WLAN light stops blinking, the unit is reset.

Resetting the router does not reset the firmware to an earlier version. It will change all settings back to factory defaults.

Note: The factory defaults username is admin, and there is no password.
Read more @ FAQ

Network installation of Windows 7(without using DVD-ROM)

Almost everyone nowadays owns a netbook or UMPC. There are variety of ways of installing a fresh copy of the OS. Of course I`m going to write a tutorial of how to network install a windows 7 on your portable PC.
In order to reinstall your system you are going to need another machine in your network(lets say your desktop pc). You have to set its IP address to static(192.168.1.2), just until the installation is finished.
The things you will need are:
  • TFTpd32 with WinPE
  • Image of Windows 7
  • Daemon tools to mount the image
Extract TFTpd32 in the root of your pc(“C:\” for example”). After that configure TFTpd32 and turn off its DHCP server(you will use the router`s built in dhcp)
Try to boot the laptop from the network(using PXE in the Boot manager, or in the BIOS). If everything is going fine you will see an interface similar to windows with a CMD in the middle of the screen. Now is the moment to mount the Windows image with Daemon tools and share it(right click on it Sharing->Advanced sharing use an easily memorable name like “win7setup”).
On the laptop type: “net use y: \\192.168.1.2\win7setup”, where 192.168.1.2 is the name of the desktop machine which is sharing your windows.
Now comes the tricky part you`re going to be asked for username and password. In the username field type the ip address of the desktop slash your username example “192.168.1.2\username” when username is the real username of the system and the password is the actual password.
After sucessfully entering the command just type:
y: [Enter]
setup
That`s all. If you have any questions feel free to ask them in the comment section below.

Everything about Linksys E1000

Linksys E1000
Review Not available yet
Specifications You can find them on the router`s page – here
Firmware – Ver. 1.0.00 Click here to download
Manual Click here
Factory reset(Hard reset) ” The Reset button is located on the right side of the product label. There are two ways to reset the Router to its factory defaults. Either press and hold the Reset Button for approximately five seconds, or restore the defaults from the Administration > Factory Defaults screen in the Router’s browser-based utility The Reset button is located on the rightside of the product label. There are two ways toreset the Router to its factory defaults. Either pressand hold the Reset Button for approximately five seconds, or restore the defaults from the Administration > Factory Defaults screen inthe Router’s browser-based utility” You can read more @ the product manual