Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Wi-Fiによるモダン ネットストーキング

Avatar for Akira KUMAGAI Akira KUMAGAI
August 24, 2013
Technology
0
1.9k

Wi-Fiによるモダン ネットストーキング

Avatar for Akira KUMAGAI

Akira KUMAGAI

August 24, 2013
Tweet

More Decks by Akira KUMAGAI

See All by Akira KUMAGAI
Wi-Fiの混雑に向き合う基本的知識とオフィスWi-Fi提供時の課題
Avatar for Akira KUMAGAI tinbotu
0
110
JANOG39会場ネットワークの裏話
Avatar for Akira KUMAGAI tinbotu
0
370
Wi-Fi再入門〜見えない電波を知識で見抜く
Avatar for Akira KUMAGAI tinbotu
71
160k

Other Decks in Technology

See All in Technology
DATA+AI SummitとSnowflake Summit: ユーザから見た共通点と相違点 / DATA+AI Summit and Snowflake Summit
Avatar for NTT docomo Business nttcom
0
220
ObsidianをLLM時代のナレッジベースに! クリッピング→Markdown→CLI連携の実践
Avatar for Reiki Hattori srvhat09
7
9k
増え続ける脆弱性に立ち向かう: 事前対策と優先度づけによる 持続可能な脆弱性管理 / Confronting the Rise of Vulnerabilities: Sustainable Management Through Proactive Measures and Prioritization
Avatar for NTT docomo Business nttcom
1
170
AI エンジニアの立場からみた、AI コーディング時代の開発の品質向上の取り組みと妄想
Avatar for Soh Ohara soh9834
6
270
PHPでResult型やってみよう
Avatar for higaki higaki_program
0
190
本当にわかりやすいAIエージェント入門
Avatar for segavvy segavvy
10
5.9k
From Live Coding to Vibe Coding with Firebase Studio
Avatar for Firebase Thailand firebasethailand
1
120
Microsoft Defender XDRで疲弊しないためのインシデント対応
Avatar for Kunii, Suguru sophiakunii
3
400
Semantic Machine Intelligence for Vision, Language, and Actions
Avatar for Semantic Machine Intelligence Lab., Keio Univ. keio_smilab
PRO
2
390
Ktor + Google Cloud Tasks/PubSub におけるOTel Messaging計装の実践
Avatar for SansanTech sansantech
PRO
1
270
Data Engineering Study#30 LT資料
Avatar for tetsuroito tetsuroito
1
560
少人数でも回る! DevinとPlaybookで支える運用改善
Avatar for ishikawa-pro ishikawa_pro
1
280

Featured

See All Featured
The Art of Programming - Codeland 2020
Avatar for Erika Heidi erikaheidi
54
13k
GraphQLの誤解/rethinking-graphql
Avatar for sonatard sonatard
71
11k
The Illustrated Children's Guide to Kubernetes
Avatar for Chris Short chrisshort
48
50k
How GitHub (no longer) Works
Avatar for Zach Holman holman
314
140k
Six Lessons from altMBA
Avatar for Skipper Chong Warson skipperchong
28
3.9k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
29
5.4k
Designing for Performance
Avatar for Lara Hogan lara
610
69k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
Avatar for mongodb mongodb
47
9.6k
No one is an island. Learnings from fostering a developers community.
Avatar for Antonio thoeni
21
3.4k
Mobile First: as difficult as doing things right
Avatar for Swwweet swwweet
223
9.7k
Building Applications with DynamoDB
Avatar for Matt Wood mza
95
6.5k
Documentation Writing (for coders)
Avatar for Carmen Chung carmenintech
72
4.9k

Transcript

  1. 8J'JʹΑΔ Ϟμϯ ωοτετʔΩϯά Akira KUMAGAI @tinbotu 2013ՆٳΈࣗ༝ݚڀ

  2. ͋ͱͰσϞΛ͠·͢ • ݸਓΛ௚઀ಛఆՄೳͳ৘ใ͸͋Γ·ͤΜ • ؒ઀తʹ͸ಛఆͷࡐྉʹͳΓಘΔ͔΋ • ಉҙ͍͚ͨͩͳ͍৔߹͸ WiFi σόΠεͷ ిݯΛ੾͍ͬͯͩ͘͞

  3. σϞͷର৅ʹͳΔΑ

  4. WiFi ͷ͘͠Έ 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(਌ػ) Λ୳͢ 2.ΫϥΠΞϯτ͕ AP ͷҰཡΛදࣔ 3.Ϣʔβ͕

    AP Λબ୒ 4.ೝূ 5.઀ଓ׬ྃ

  5. APҰཡΛදࣔ

  6. Ϣʔβ͕APΛબ୒

  7. ύεϫʔυೖྗ

  8. ύεϫʔυೖྗ ॳճ͚ͩͩΖ

  9. WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(਌ػ) Λ୳͢ 2.هԱ͍ͯ͠Δ AP͕͋Ε͹ 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.઀ଓ׬ྃ

  10. WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτʢࢠػʣ͕ AP Λ୳͢ 2.هԱ͍ͯ͠ΔAP͕͋Ε͹ 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.઀ଓ׬ྃ શࣗಈ

  11. ΋͏গ͠ৄ͘͠

  12. ୺຤͸਌ػ͕ͳ͍ͱ ઀ଓͰ͖ͳ͍

  13. ୺຤͕AP(਌ػ)ͷଘࡏΛ஌Δํ๏͸2ͭ • AP͕ఆظ์ૹ͍ͯ͠ΔϏʔίϯ*1 • ΞΫςΟϒͳݕग़ཁٻ*2 *1 IEEE802.11 00/1000 Beacon Frame,

    MAC(APͷBSSID), SSID, Capability, BI, TIM ͳͲΛಛఆͷνϟωϧʹͯ௨ৗ20ʙ500msִؒͰૹ৴ *2 IEEE802.11 00/0100 Probe Request, MAC(୺຤ͷMACΞυϨε), SSID(ۭͳΒϒϩʔυΩϟετ) ɹ IEEE802.11 00/0101 Probe Response, େମϏʔίϯͱಉ͡৘ใྔΛಛఆͷ୺຤΁Ԡ౴

  14. AP͸௨৴͕ͳ͍ͱ͖΋ ࣗ෼ͷSSIDͳͲΛఆظతʹ์ૹ͍ͯ͠Δ ͜ΕΛBeacon(Ϗʔίϯ) ͱݺͼ·͢

  15. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ IEEE802.11 Probe Request

  16. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ

    IEEE802.11 Probe Request

  17. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ

    AP ݕग़Ԡ౴ (Probe Response) ʮ͸͍ɹԶͷ໊͸”MyHomeBuffalo”ʯ IEEE802.11 Probe Request
  18. None

  19. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ

  20. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ ·ͨ͸ʁ

  21. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ ݕग़ཁٻ(Probe Request)ͬͯԿΑ AP͕Ϗʔίϯग़ͯ͠Ε͹ଘࡏ͕Θ͔Δ͡ΌΜ ͍Βͳ͍ͷͰ͸ɻ ·ͨ͸ʁ

  22. ݕग़ཁٻ͕ඞཁ!

  23. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔)

  24. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍

  25. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •

    SSIDΛӅͯ͠ΔAP͸ͦ΋ͦ΋ݟ͑ͳ͍

  26. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •

    SSIDΛӅͯ͠ΔAP͸ͦ΋ͦ΋ݟ͑ͳ͍

  27. SSID ໊ࢦ͠Ͱݕग़ཁٻ

  28. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  29. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ

  30. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ ͸΍͍

  31. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ ͸΍͍ ݕग़ϛε΋ͳ͍

  32. ͸΍͍͚Ͳ

  33. ໰୊఺

  34. • ࢠػ͸ࣗ෼ͷډ৔ॴ͕Θ͔ͬͯͳ͍.
 AP͕ແ͍͸ͣͷ৔ॴͰ΋ Probe Request ͢Δ ໰୊఺

  35. • ࢠػ͸ࣗ෼ͷډ৔ॴ͕Θ͔ͬͯͳ͍.
 AP͕ແ͍͸ͣͷ৔ॴͰ΋ Probe Request ͢Δ • Ұ౓઀ଓهԱͤͨ͞Β͠͹Β͘ͷؒ Probe Request

    Λૹग़͠ଓ͚Δ(࣮૷ґଘ) ໰୊఺

  36. ͨͱ͑͹౦ژʙതଟΛҠಈ͠·͢

  37. ͨͱ͑͹౦ژʙതଟΛҠಈ͠·͢ ࣗ୐ͷAPʹର͢Δݕग़ཁٻ͸ ՈΛग़ͨॠ͔ؒΒ͢΂ͯແବܸͪ ʢి஑ͱ͔ͷແବ͸·͋ࠣ຤ͳ໰୊ʣ

  38. SSID ໊ࢦ͠Ͱݕग़ཁٻ

  39. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  40. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  41. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  42. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request)

  43. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ͜ͷiPhone͕͋ΒΏΔग़ઌͰ “MyHomeBuffalo”ͬͯͷΛཁٻͯ͠ΔΑ͏ͩ

  44. ࣮ࡍʹݟͯΈΑ͏

  45. None

  46. ࣗ෼ͷϊʔτPC(b8:f6:b1:14:fc:1b)͕
 iis-visitor ͬͯͷΛ୳͍ͯ͠Δ

  47. iis-visitor
 Ͳ͔͜ͷήετ༻WiFiͬΆ͍

  48. iis-visitor
 Ͳ͔͜ͷήετ༻WiFiͬΆ͍ ઀ଓ֮ͨ͑͋͠Δ

  49. Probe Request ʹؚ·ΕΔ಺༰

  50. Probe Request ʹؚ·ΕΔ಺༰ • ୺຤ͷMACΞυϨε • ୺຤͕઀ଓͨ͜͠ͱͷ͋Δ AP ͷ ESSID


    ʢෳ਺͔΋ʣ • APͷBSSID(MACΞυϨε)͸ؚ·Εͳ͍
  51. None
  52. None

  53. ͜ͷ"QQMF੡඼ͷॴ༗ऀ͸Ϊʔਫʹߦͬͨ͜ͱ ͕͋ͬͯTIJCVIPVTFʹ΋ߦͬͨ͜ͱ͕͋ͬͯ TJOBQʹ΋ߦͬͨ͜ͱ͕͋ͬͯUBLBOP͞Μͱ ໘͕ࣝ͋ΔͩΖ͏ɻ

  54. ΍͹͍

  55. ετʔΩϯά΁ͷԠ༻

  56. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ

  57. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ • WiFi ͕௚઀ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹ͸ωοτετʔΩϯά͡Όͳ͍

  58. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ • WiFi ͕௚઀ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹ͸ωοτετʔΩϯά͡Όͳ͍ • λʔήοτͷ୺຤ͷMACΞυϨε͕Θ͔Β

    ͳ͍ͱ୭͕୭͔ͩΘ͔Βͳ͍

  59. MACΞυϨεΛ஌Δํ๏

  60. MACΞυϨεΛ஌Δํ๏ λʔήοτͷ୺຤ʹ௚઀઀৮͢Δඞཁ͕͋Δ… ͦΕ͕ແཧͳΒਪଌ͢ΔͷΈ

  61. σϞ

  62. None

  63. ଞͷωλ • BSSID(MAC) ͔ΒҐஔ৘ใΛҾ͚ΔAPI • ESSID ͔Β BSSID Λਪଌ͠ Probe

    Request ͔Β୺຤ͷաڈͷҐஔ৘ใΛਪ ଌ

  64. ๏཯తͳ࿩ • ి೾๏ ୈ59৚ʢൿີͷอޢʣ • Կਓ΋๏཯ʹผஈͷఆΊ͕͋Δ৔߹Λআ͘΄͔ɺಛఆͷ૬खํʹର͠ ͯߦΘΕΔແઢ௨৴ʢిؾ௨৴ࣄۀ๏ୈ4৚ୈ1߲ຢ͸ୈ164৚ୈ2߲ͷ ௨৴Ͱ͋ Δ΋ͷΛআ͘ɻୈ109৚ฒͼʹୈ109৚ͷ2ୈ2߲ٴͼୈ3߲ʹ͓ ͍ͯಉ͡ɻʣΛ๣डͯͦ͠ͷଘࡏए͘͠͸಺༰Λ࿙Β͠ɺຢ͸͜ΕΛ઄

    ༻ͯ͠͸ͳΒͳ͍ɻ

  65. __END__