Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Wi-Fiによるモダン ネットストーキング
Search
Akira KUMAGAI
August 24, 2013
Technology
0
1.9k
Wi-Fiによるモダン ネットストーキング
Akira KUMAGAI
August 24, 2013
Tweet
Share
More Decks by Akira KUMAGAI
See All by Akira KUMAGAI
Wi-Fiの混雑に向き合う基本的知識とオフィスWi-Fi提供時の課題
tinbotu
0
100
JANOG39会場ネットワークの裏話
tinbotu
0
370
Wi-Fi再入門〜見えない電波を知識で見抜く
tinbotu
71
160k
Other Decks in Technology
See All in Technology
mrubyと micro-ROSが繋ぐロボットの世界
kishima
3
390
Lazy application authentication with Tailscale
bluehatbrit
0
130
生成AIで小説を書くためにプロンプトの制約や原則について学ぶ / prompt-engineering-for-ai-fiction
nwiizo
6
3.8k
整頓のジレンマとの戦い〜Tidy First?で振り返る事業とキャリアの歩み〜/Fighting the tidiness dilemma〜Business and Career Milestones Reflected on in Tidy First?〜
bitkey
1
4.6k
MUITにおける開発プロセスモダナイズの取り組みと開発生産性可視化の取り組みについて / Modernize the Development Process and Visualize Development Productivity at MUIT
muit
1
4.5k
タイミーのデータモデリング事例と今後のチャレンジ
ttccddtoki
6
2k
さくらのIaaS基盤のモニタリングとOpenTelemetry/OSC Hokkaido 2025
fujiwara3
2
280
Lambda Web Adapterについて自分なりに理解してみた
smt7174
5
140
KubeCon + CloudNativeCon Japan 2025 Recap by CA
ponkio_o
PRO
0
260
強化されたAmazon Location Serviceによる新機能と開発者体験
dayjournal
4
280
AWS認定を取る中で感じたこと
siromi
1
130
Should Our Project Join the CNCF? (Japanese Recap)
whywaita
PRO
0
300
Featured
See All Featured
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
tammyeverts
5
240
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
17
950
Producing Creativity
orderedlist
PRO
346
40k
Gamification - CAS2011
davidbonilla
81
5.3k
Statistics for Hackers
jakevdp
799
220k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
281
13k
Designing for Performance
lara
609
69k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
PRO
181
53k
The Power of CSS Pseudo Elements
geoffreycrofte
77
5.8k
For a Future-Friendly Web
brad_frost
179
9.8k
Reflections from 52 weeks, 52 projects
jeffersonlam
351
20k
Java REST API Framework Comparison - PWX 2021
mraible
31
8.7k
Transcript
8J'JʹΑΔ Ϟμϯ ωοτετʔΩϯά Akira KUMAGAI @tinbotu 2013ՆٳΈࣗ༝ݚڀ
͋ͱͰσϞΛ͠·͢ • ݸਓΛಛఆՄೳͳใ͋Γ·ͤΜ • ؒతʹಛఆͷࡐྉʹͳΓಘΔ͔ • ಉҙ͍͚ͨͩͳ͍߹ WiFi σόΠεͷ ిݯΛ͍ͬͯͩ͘͞
σϞͷରʹͳΔΑ
WiFi ͷ͘͠Έ 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(ػ) Λ୳͢ 2.ΫϥΠΞϯτ͕ AP ͷҰཡΛදࣔ 3.Ϣʔβ͕
AP Λબ 4.ೝূ 5.ଓྃ
APҰཡΛදࣔ
Ϣʔβ͕APΛબ
ύεϫʔυೖྗ
ύεϫʔυೖྗ ॳճ͚ͩͩΖ
WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(ػ) Λ୳͢ 2.هԱ͍ͯ͠Δ AP͕͋Ε 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.ଓྃ
WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτʢࢠػʣ͕ AP Λ୳͢ 2.هԱ͍ͯ͠ΔAP͕͋Ε 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.ଓྃ શࣗಈ
͏গ͠ৄ͘͠
ػ͕ͳ͍ͱ ଓͰ͖ͳ͍
͕AP(ػ)ͷଘࡏΛΔํ๏2ͭ • AP͕ఆظ์ૹ͍ͯ͠ΔϏʔίϯ*1 • ΞΫςΟϒͳݕग़ཁٻ*2 *1 IEEE802.11 00/1000 Beacon Frame,
MAC(APͷBSSID), SSID, Capability, BI, TIM ͳͲΛಛఆͷνϟωϧʹͯ௨ৗ20ʙ500msִؒͰૹ৴ *2 IEEE802.11 00/0100 Probe Request, MAC(ͷMACΞυϨε), SSID(ۭͳΒϒϩʔυΩϟετ) ɹ IEEE802.11 00/0101 Probe Response, େମϏʔίϯͱಉ͡ใྔΛಛఆͷԠ
AP௨৴͕ͳ͍ͱ͖ ࣗͷSSIDͳͲΛఆظతʹ์ૹ͍ͯ͠Δ ͜ΕΛBeacon(Ϗʔίϯ) ͱݺͼ·͢
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ IEEE802.11 Probe Request
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ
IEEE802.11 Probe Request
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ
AP ݕग़Ԡ (Probe Response) ʮ͍ɹԶͷ໊”MyHomeBuffalo”ʯ IEEE802.11 Probe Request
None
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ ·ͨʁ
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ ݕग़ཁٻ(Probe Request)ͬͯԿΑ AP͕Ϗʔίϯग़ͯ͠Εଘࡏ͕Θ͔Δ͡ΌΜ ͍Βͳ͍ͷͰɻ ·ͨʁ
ݕग़ཁٻ͕ඞཁ!
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔)
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •
SSIDΛӅͯ͠ΔAPͦͦݟ͑ͳ͍
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •
SSIDΛӅͯ͠ΔAPͦͦݟ͑ͳ͍
SSID ໊ࢦ͠Ͱݕग़ཁٻ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ ͍
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ ͍ ݕग़ϛεͳ͍
͍͚Ͳ
• ࢠػࣗͷډॴ͕Θ͔ͬͯͳ͍. AP͕ແ͍ͣͷॴͰ Probe Request ͢Δ
• ࢠػࣗͷډॴ͕Θ͔ͬͯͳ͍. AP͕ແ͍ͣͷॴͰ Probe Request ͢Δ • ҰଓهԱͤͨ͞Β͠Β͘ͷؒ Probe Request
Λૹग़͠ଓ͚Δ(࣮ґଘ)
ͨͱ͑౦ژʙതଟΛҠಈ͠·͢
ͨͱ͑౦ژʙതଟΛҠಈ͠·͢ ࣗͷAPʹର͢Δݕग़ཁٻ ՈΛग़ͨॠ͔ؒΒͯ͢ແବܸͪ ʢిͱ͔ͷແବ·͋ࠣͳʣ
SSID ໊ࢦ͠Ͱݕग़ཁٻ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request)
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ͜ͷiPhone͕͋ΒΏΔग़ઌͰ “MyHomeBuffalo”ͬͯͷΛཁٻͯ͠ΔΑ͏ͩ
࣮ࡍʹݟͯΈΑ͏
None
ࣗͷϊʔτPC(b8:f6:b1:14:fc:1b)͕ iis-visitor ͬͯͷΛ୳͍ͯ͠Δ
iis-visitor Ͳ͔͜ͷήετ༻WiFiͬΆ͍
iis-visitor Ͳ͔͜ͷήετ༻WiFiͬΆ͍ ଓ֮ͨ͑͋͠Δ
Probe Request ʹؚ·ΕΔ༰
Probe Request ʹؚ·ΕΔ༰ • ͷMACΞυϨε • ͕ଓͨ͜͠ͱͷ͋Δ AP ͷ ESSID
ʢෳ͔ʣ • APͷBSSID(MACΞυϨε)ؚ·Εͳ͍
None
None
͜ͷ"QQMFͷॴ༗ऀΪʔਫʹߦͬͨ͜ͱ ͕͋ͬͯTIJCVIPVTFʹߦͬͨ͜ͱ͕͋ͬͯ TJOBQʹߦͬͨ͜ͱ͕͋ͬͯUBLBOP͞Μͱ ໘͕ࣝ͋ΔͩΖ͏ɻ
͍
ετʔΩϯάͷԠ༻
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ • WiFi ͕ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹωοτετʔΩϯά͡Όͳ͍
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ • WiFi ͕ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹωοτετʔΩϯά͡Όͳ͍ • λʔήοτͷͷMACΞυϨε͕Θ͔Β
ͳ͍ͱ୭͕୭͔ͩΘ͔Βͳ͍
MACΞυϨεΛΔํ๏
MACΞυϨεΛΔํ๏ λʔήοτͷʹ৮͢Δඞཁ͕͋Δ… ͦΕ͕ແཧͳΒਪଌ͢ΔͷΈ
σϞ
None
ଞͷωλ • BSSID(MAC) ͔ΒҐஔใΛҾ͚ΔAPI • ESSID ͔Β BSSID Λਪଌ͠ Probe
Request ͔ΒͷաڈͷҐஔใΛਪ ଌ
๏తͳ • ి๏ ୈ59ʢൿີͷอޢʣ • Կਓ๏ʹผஈͷఆΊ͕͋Δ߹Λআ͘΄͔ɺಛఆͷ૬खํʹର͠ ͯߦΘΕΔແઢ௨৴ʢిؾ௨৴ࣄۀ๏ୈ4ୈ1߲ຢୈ164ୈ2߲ͷ ௨৴Ͱ͋ ΔͷΛআ͘ɻୈ109ฒͼʹୈ109ͷ2ୈ2߲ٴͼୈ3߲ʹ͓ ͍ͯಉ͡ɻʣΛडͯͦ͠ͷଘࡏए͘͠༰Λ࿙Β͠ɺຢ͜ΕΛ
༻ͯ͠ͳΒͳ͍ɻ
__END__