Jump to content


Photo
- - - - -

Finding Non-broadcasting Sidd Ap's


  • Please log in to reply
17 replies to this topic

#1 joeypesci

joeypesci

    Hak5 Pirate

  • Active Members
  • PipPipPipPipPipPip
  • 300 posts
  • Gender:Female
  • Location:Now Located Up North

Posted 28 April 2010 - 05:10 PM

I use to use a tool in Windows that allowed me to see all WIFI AP's in the area, even if they weren't broadcasting their SIDD. Can't remember what it was called. Anyone got any ideas?

Don't want to use anything for Linux as I don't get along with Linux. Sorry but I like Windows as it just works.

#2 Sparda

Sparda

    Hak5 Junkie

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 7,849 posts
  • Gender:Male

Posted 28 April 2010 - 05:10 PM

NetStumbler?

#3 joeypesci

joeypesci

    Hak5 Pirate

  • Active Members
  • PipPipPipPipPipPip
  • 300 posts
  • Gender:Female
  • Location:Now Located Up North

Posted 28 April 2010 - 05:28 PM

Thanks I think that was it. But it keeps saying Adapter not present.

I'm on a HP2510p.

I assume the onboard wifi isn't supported sad.gif

#4 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 29 April 2010 - 05:16 AM

QUOTE (Sparda @ Thu, 29 Apr 2010 07:10:48 +0000) <{POST_SNAPBACK}>
NetStumbler?


What about airodump-ng, doesn't it search for non-broadcast SSIDs as well.
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#5 beakmyn

beakmyn

    Hak5 Pirate

  • Active Members
  • PipPipPipPipPipPip
  • 423 posts

Posted 29 April 2010 - 07:48 AM

QUOTE (Sparda @ Wed, 28 Apr 2010 18:10:48 +0000) <{POST_SNAPBACK}>
NetStumbler?



No. Netstumbler uses "Active Probing". If an AP has it's SSID set to non-broadcast it will not respond to the probe packet and Netstumbler won't see it.

If you want to find Non broadcast AP you need to use Kismet. Kismet is a passive scanner and listens only. So, if an AP is not broadcasting Kismet will still see the data/traffic going in and out of it. It will capture the packets and extract the SSID from those packets. This only works if there is traffic on the hidden AP. Which there usually is.

Netstumbler only works 100% with Orinoco PCMCIA cards. Anything else will most likely use the Windows NDIS driver which is severely limited in it's capabilities. The one thing that holds certain when using the NDIS driver is that the SNR graphs are bogus. NDIS doesn't support discrete SNR. Also, Netstumbler probably won't work with Windows 7 or Vista due to how the wireless is set up in those OSes.

Marius is planning on releasing a new version of Netstumbler that will work under Vista and Win 7 but there is currently no track for when that release will happen.

For now the best freeware that is Windows Vista/7 working is http://www.metageek....oducts/inssider



#6 joeypesci

joeypesci

    Hak5 Pirate

  • Active Members
  • PipPipPipPipPipPip
  • 300 posts
  • Gender:Female
  • Location:Now Located Up North

Posted 29 April 2010 - 08:16 AM

Thanks. I have inssider running but tested it for no ssid broadcasting and it doesn't pick it up.

It was on a Dell x300 I believe with Intel's own drivers software, I think, that was the program I used that would detect non broadcasting AP's in the area.

#7 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 29 April 2010 - 04:54 PM

That's what I thought!

Edited by Infiltrator, 29 April 2010 - 04:56 PM.

Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#8 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,482 posts
  • Gender:Male

Posted 29 April 2010 - 10:57 PM

I don't believe there's a free Windows application that will show non-broadcast ssids. Airsnort for windows might still work, but it's no longer supported, and probably won't work with win7.

The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png


#9 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 30 April 2010 - 02:30 AM

QUOTE (barry99705 @ Fri, 30 Apr 2010 12:57:55 +0000) <{POST_SNAPBACK}>
I don't believe there's a free Windows application that will show non-broadcast ssids. Airsnort for windows might still work, but it's no longer supported, and probably won't work with win7.



You could set up a VM with a linux distribution and have Kismet running off it.
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#10 Inked

Inked

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 94 posts

Posted 30 April 2010 - 06:41 PM

How about WirelessMon by PassMark?
http://www.passmark....lessmonitor.htm


#11 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 30 April 2010 - 06:56 PM

QUOTE (Inked @ Sat, 01 May 2010 08:41:08 +0000) <{POST_SNAPBACK}>
How about WirelessMon by PassMark?
http://www.passmark....lessmonitor.htm


I checked the website, but could not find any reference to "Can search for Non-broadcasting SSIDs". You tried using it, to see if it works.
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#12 Inked

Inked

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 94 posts

Posted 30 April 2010 - 08:49 PM

I cannot personally confirm, however I have sent a message to someone who would be able to. I will get back to you guys once he responds.

#13 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 30 April 2010 - 09:02 PM

QUOTE (Inked @ Sat, 01 May 2010 10:49:28 +0000) <{POST_SNAPBACK}>
I cannot personally confirm, however I have sent a message to someone who would be able to. I will get back to you guys once he responds.


No dramas!
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#14 Inked

Inked

    Hak5 Fan ++

  • Active Members
  • PipPipPipPip
  • 94 posts

Posted 30 April 2010 - 09:24 PM

QUOTE (Infiltrator @ Fri, 30 Apr 2010 22:02:00 +0000) <{POST_SNAPBACK}>
No dramas!

huh?

#15 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 30 April 2010 - 09:30 PM

QUOTE (Inked @ Sat, 01 May 2010 12:24:10 +0000) <{POST_SNAPBACK}>
huh?


Another way of saying, no problems my friend, will wait to hear from you soon.
Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#16 joeypesci

joeypesci

    Hak5 Pirate

  • Active Members
  • PipPipPipPipPipPip
  • 300 posts
  • Gender:Female
  • Location:Now Located Up North

Posted 30 April 2010 - 10:51 PM

I can confirm it does show you AP's that aren't broadcasting their SSID. Just doesn't show you what their SSID is, but at least you know they're there.

The original program I use to use is the reason I just turned broadcasting back on, on my AP's because I thought it pointless turning it off. As anyone who knew what they were doing would be able to see them anyway, and with the tool I use to use it seemed pointless.

I leave them broadcasting now as kit like my Nokia E71 was having problems with the non broadcasting AP.

Thanks for the help people.

Edited by joeypesci, 30 April 2010 - 10:51 PM.


#17 Infiltrator

Infiltrator

    Gray-Hat Specialist

  • Active Members
  • PipPipPipPipPipPipPipPipPipPipPipPip
  • 4,392 posts
  • Gender:Male
  • Location:Over the Atlantic, at a cruising altitude of 70.000 feet.
  • Interests:Wireless and Network Security
    Server Virtualization
    Computer Network Infrastructure
    Server implementation.
    General Aviation
    RC Airplanes and Helicopters
    Scuba Diving
    Sky Diving
    War driving
    Solar battery Systems.
    Pen-Testing
    Command & Conquer

Posted 01 May 2010 - 04:31 AM

QUOTE (joeypesci @ Sat, 01 May 2010 12:51:03 +0000) <{POST_SNAPBACK}>
I can confirm it does show you AP's that aren't broadcasting their SSID. Just doesn't show you what their SSID is, but at least you know they're there.

The original program I use to use is the reason I just turned broadcasting back on, on my AP's because I thought it pointless turning it off. As anyone who knew what they were doing would be able to see them anyway, and with the tool I use to use it seemed pointless.

I leave them broadcasting now as kit like my Nokia E71 was having problems with the non broadcasting AP.

Thanks for the help people.


I know turning off the SSID is pointless, but there are still users who have no fucking clue about the existence of this tool.

Edited by Infiltrator, 01 May 2010 - 04:36 AM.

Regards,
Infiltrator


Posted Image

Currently studying for my CCE.

#18 barry99705

barry99705

    Hak5 1337 Fan

  • Active Members
  • PipPipPipPipPipPipPipPipPipPip
  • 1,482 posts
  • Gender:Male

Posted 19 May 2010 - 09:21 PM

QUOTE (Infiltrator @ Sat, 01 May 2010 05:31:43 +0000) <{POST_SNAPBACK}>
I know turning off the SSID is pointless, but there are still users who have no fucking clue about the existence of this tool.


Just use a good wpa2 key and don't worry about it. It also helps to change it every now and then.

The Pineapple Wiki

http://wiki.wifipineapple.com

1JRos2rbs9wKRBMchL9Ahw.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users