Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Wi-Fiによるモダン ネットストーキング
Search
Akira KUMAGAI
August 24, 2013
Technology
0
1.8k
Wi-Fiによるモダン ネットストーキング
Akira KUMAGAI
August 24, 2013
Tweet
Share
More Decks by Akira KUMAGAI
See All by Akira KUMAGAI
Wi-Fiの混雑に向き合う基本的知識とオフィスWi-Fi提供時の課題
tinbotu
0
74
JANOG39会場ネットワークの裏話
tinbotu
0
340
Wi-Fi再入門〜見えない電波を知識で見抜く
tinbotu
71
160k
Other Decks in Technology
See All in Technology
ブラックフライデーで購入したPixel9で、Gemini Nanoを動かしてみた
marchin1989
1
530
alecthomas/kong はいいぞ / kamakura.go#7
fujiwara3
1
300
re:Invent をおうちで楽しんでみた ~CloudWatch のオブザーバビリティ機能がスゴい!/ Enjoyed AWS re:Invent from Home and CloudWatch Observability Feature is Amazing!
yuj1osm
0
120
re:Invent 2024 Innovation Talks(NET201)で語られた大切なこと
shotashiratori
0
310
Wantedly での Datadog 活用事例
bgpat
1
450
Amazon Kendra GenAI Index 登場でどう変わる? 評価から学ぶ最適なRAG構成
naoki_0531
0
110
コンテナセキュリティのためのLandlock入門
nullpo_head
2
320
終了の危機にあった15年続くWebサービスを全力で存続させる - phpcon2024
yositosi
11
9.9k
Snykで始めるセキュリティ担当者とSREと開発者が楽になる脆弱性対応 / Getting started with Snyk Vulnerability Response
yamaguchitk333
2
180
なぜCodeceptJSを選んだか
goataka
0
160
20241220_S3 tablesの使い方を検証してみた
handy
4
460
マイクロサービスにおける容易なトランザクション管理に向けて
scalar
0
130
Featured
See All Featured
Making the Leap to Tech Lead
cromwellryan
133
9k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
169
50k
Why You Should Never Use an ORM
jnunemaker
PRO
54
9.1k
Mobile First: as difficult as doing things right
swwweet
222
9k
Building a Scalable Design System with Sketch
lauravandoore
460
33k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
232
17k
A better future with KSS
kneath
238
17k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
The Cost Of JavaScript in 2023
addyosmani
45
7k
4 Signs Your Business is Dying
shpigford
181
21k
A Philosophy of Restraint
colly
203
16k
The Cult of Friendly URLs
andyhume
78
6.1k
Transcript
8J'JʹΑΔ Ϟμϯ ωοτετʔΩϯά Akira KUMAGAI @tinbotu 2013ՆٳΈࣗ༝ݚڀ
͋ͱͰσϞΛ͠·͢ • ݸਓΛಛఆՄೳͳใ͋Γ·ͤΜ • ؒతʹಛఆͷࡐྉʹͳΓಘΔ͔ • ಉҙ͍͚ͨͩͳ͍߹ WiFi σόΠεͷ ిݯΛ͍ͬͯͩ͘͞
σϞͷରʹͳΔΑ
WiFi ͷ͘͠Έ 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(ػ) Λ୳͢ 2.ΫϥΠΞϯτ͕ AP ͷҰཡΛදࣔ 3.Ϣʔβ͕
AP Λબ 4.ೝূ 5.ଓྃ
APҰཡΛදࣔ
Ϣʔβ͕APΛબ
ύεϫʔυೖྗ
ύεϫʔυೖྗ ॳճ͚ͩͩΖ
WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(ػ) Λ୳͢ 2.هԱ͍ͯ͠Δ AP͕͋Ε 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.ଓྃ
WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτʢࢠػʣ͕ AP Λ୳͢ 2.هԱ͍ͯ͠ΔAP͕͋Ε 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.ଓྃ શࣗಈ
͏গ͠ৄ͘͠
ػ͕ͳ͍ͱ ଓͰ͖ͳ͍
͕AP(ػ)ͷଘࡏΛΔํ๏2ͭ • AP͕ఆظ์ૹ͍ͯ͠ΔϏʔίϯ*1 • ΞΫςΟϒͳݕग़ཁٻ*2 *1 IEEE802.11 00/1000 Beacon Frame,
MAC(APͷBSSID), SSID, Capability, BI, TIM ͳͲΛಛఆͷνϟωϧʹͯ௨ৗ20ʙ500msִؒͰૹ৴ *2 IEEE802.11 00/0100 Probe Request, MAC(ͷMACΞυϨε), SSID(ۭͳΒϒϩʔυΩϟετ) ɹ IEEE802.11 00/0101 Probe Response, େମϏʔίϯͱಉ͡ใྔΛಛఆͷԠ
AP௨৴͕ͳ͍ͱ͖ ࣗͷSSIDͳͲΛఆظతʹ์ૹ͍ͯ͠Δ ͜ΕΛBeacon(Ϗʔίϯ) ͱݺͼ·͢
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ IEEE802.11 Probe Request
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ
IEEE802.11 Probe Request
ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ
AP ݕग़Ԡ (Probe Response) ʮ͍ɹԶͷ໊”MyHomeBuffalo”ʯ IEEE802.11 Probe Request
None
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ ·ͨʁ
(ࢠػ)ϏʔίϯΛड৴͢Δ͔ɺ·ͨ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ ͕͋Ε AP ΛೝࣝͰ͖Δ ݕग़ཁٻ(Probe Request)ͬͯԿΑ AP͕Ϗʔίϯग़ͯ͠Εଘࡏ͕Θ͔Δ͡ΌΜ ͍Βͳ͍ͷͰɻ ·ͨʁ
ݕग़ཁٻ͕ඞཁ!
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔)
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •
SSIDΛӅͯ͠ΔAPͦͦݟ͑ͳ͍
ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ͍(ೋճҎ߱ͷଓͱ͔) • WiFi νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •
SSIDΛӅͯ͠ΔAPͦͦݟ͑ͳ͍
SSID ໊ࢦ͠Ͱݕग़ཁٻ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ ͍
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ (Probe
Response) ʮ͍ʯ ͍ ݕग़ϛεͳ͍
͍͚Ͳ
• ࢠػࣗͷډॴ͕Θ͔ͬͯͳ͍. AP͕ແ͍ͣͷॴͰ Probe Request ͢Δ
• ࢠػࣗͷډॴ͕Θ͔ͬͯͳ͍. AP͕ແ͍ͣͷॴͰ Probe Request ͢Δ • ҰଓهԱͤͨ͞Β͠Β͘ͷؒ Probe Request
Λૹग़͠ଓ͚Δ(࣮ґଘ)
ͨͱ͑౦ژʙതଟΛҠಈ͠·͢
ͨͱ͑౦ژʙതଟΛҠಈ͠·͢ ࣗͷAPʹର͢Δݕग़ཁٻ ՈΛग़ͨॠ͔ؒΒͯ͢ແବܸͪ ʢిͱ͔ͷແବ·͋ࠣͳʣ
SSID ໊ࢦ͠Ͱݕग़ཁٻ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request)
SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe
Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ͜ͷiPhone͕͋ΒΏΔग़ઌͰ “MyHomeBuffalo”ͬͯͷΛཁٻͯ͠ΔΑ͏ͩ
࣮ࡍʹݟͯΈΑ͏
None
ࣗͷϊʔτPC(b8:f6:b1:14:fc:1b)͕ iis-visitor ͬͯͷΛ୳͍ͯ͠Δ
iis-visitor Ͳ͔͜ͷήετ༻WiFiͬΆ͍
iis-visitor Ͳ͔͜ͷήετ༻WiFiͬΆ͍ ଓ֮ͨ͑͋͠Δ
Probe Request ʹؚ·ΕΔ༰
Probe Request ʹؚ·ΕΔ༰ • ͷMACΞυϨε • ͕ଓͨ͜͠ͱͷ͋Δ AP ͷ ESSID
ʢෳ͔ʣ • APͷBSSID(MACΞυϨε)ؚ·Εͳ͍
None
None
͜ͷ"QQMFͷॴ༗ऀΪʔਫʹߦͬͨ͜ͱ ͕͋ͬͯTIJCVIPVTFʹߦͬͨ͜ͱ͕͋ͬͯ TJOBQʹߦͬͨ͜ͱ͕͋ͬͯUBLBOP͞Μͱ ໘͕ࣝ͋ΔͩΖ͏ɻ
͍
ετʔΩϯάͷԠ༻
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ • WiFi ͕ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹωοτετʔΩϯά͡Όͳ͍
ετʔΩϯάͷԠ༻ • શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ଆͰ߈ܸݕ͕ෆՄೳ • WiFi ͕ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹωοτετʔΩϯά͡Όͳ͍ • λʔήοτͷͷMACΞυϨε͕Θ͔Β
ͳ͍ͱ୭͕୭͔ͩΘ͔Βͳ͍
MACΞυϨεΛΔํ๏
MACΞυϨεΛΔํ๏ λʔήοτͷʹ৮͢Δඞཁ͕͋Δ… ͦΕ͕ແཧͳΒਪଌ͢ΔͷΈ
σϞ
None
ଞͷωλ • BSSID(MAC) ͔ΒҐஔใΛҾ͚ΔAPI • ESSID ͔Β BSSID Λਪଌ͠ Probe
Request ͔ΒͷաڈͷҐஔใΛਪ ଌ
๏తͳ • ి๏ ୈ59ʢൿີͷอޢʣ • Կਓ๏ʹผஈͷఆΊ͕͋Δ߹Λআ͘΄͔ɺಛఆͷ૬खํʹର͠ ͯߦΘΕΔແઢ௨৴ʢిؾ௨৴ࣄۀ๏ୈ4ୈ1߲ຢୈ164ୈ2߲ͷ ௨৴Ͱ͋ ΔͷΛআ͘ɻୈ109ฒͼʹୈ109ͷ2ୈ2߲ٴͼୈ3߲ʹ͓ ͍ͯಉ͡ɻʣΛडͯͦ͠ͷଘࡏए͘͠༰Λ࿙Β͠ɺຢ͜ΕΛ
༻ͯ͠ͳΒͳ͍ɻ
__END__