PoSHMagiC0de Posted August 26, 2018 Share Posted August 26, 2018 So, I was playing with scapy with working on cloaking beacons and forging my own probe requests and responses when I noticed something from my Pixel that was updated to Pi 9.1 and other devices in the area. A bunch of devices were not probing for individual aps but instead doing wildcard probes. I can see this impeding attacks that spoof responses for open access points that are probed to induce a connection. Just an fyi. Take a look in wireshark while monitoring wifi to see for yourself. Filter by probe requests...or use scapy to find type 0 and subtype 4. Link to comment Share on other sites More sharing options...
i8igmac Posted August 26, 2018 Share Posted August 26, 2018 I have notice this a few years ago when I made a pi mana mobile box. ( not the frame in wire shark but the lack of connectivity ) during the testing around my house I notice the samsung s5 and other Old android devices would connect but anything newer didn't. I drove around expecting hundreds of connections but not the case. People replace phones rather quickly these days and automatic updates are becoming more frequent. Link to comment Share on other sites More sharing options...
Just_a_User Posted August 26, 2018 Share Posted August 26, 2018 3 hours ago, PoSHMagiC0de said: A bunch of devices were not probing for individual aps but instead doing wildcard probes Could it be the open network detection? or maybe google location services using wifi maybe? On my last update (only 8.1) i noticed a wifi rating provider option, i can only select google as a provider - after looking it up it seems it rates wifi networks for speed informing users before connection. that could also highlight pineapple AP's if they dont have a rating at all. Wonder if that can be spoofed with a mac address/location copy tho. Interesting times Link to comment Share on other sites More sharing options...
PoSHMagiC0de Posted September 4, 2018 Author Share Posted September 4, 2018 Nah, I seen this from new iphones too. Probing for a 0 length SSID. Was watching in wireshark and scapy. I even put a few open spots on my phone on purpose but will not probe for those, just 0 length ssid which wireshark calls a wildcard. Link to comment Share on other sites More sharing options...
Colincolin343 Posted September 5, 2018 Share Posted September 5, 2018 what does that mean for us Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.