Evil Twin Access Points for Dummies or Airsnarf for Windows

Beetle · 03-28-2005

Because running a shell script in Linux just isn't easy enough for some folks, I put together a mini how-to on setting up a Windows XP box as a rogue AP to snarf usernames and passwords (or worse) from people at hotspots, etc.

http://airsnarf.shmoo.com/airsnarf4win.html

The basic gist is: SoftAP + TreeWalk DNS + Apache + manual local DNS cache poisoning = Airsnarf for Windows

Perhaps now the fucking reporters will stop calling "Evil Twin" access points a technique used by "sophisticated hackers".

Enjoy.

Sincerely,

Beetle

G8tK33per · 03-28-2005

Thanks Beetle!

renderman · 03-28-2005

I've smacked a few reporters around for the blatent lack of logic.

Would you call someone setting up a fake ATM an 'evil twin'? Hell no.

Thorn · 03-29-2005

Well done, Beetle. It is refreshing to see the IT media addressed in such a fashion.

hydro27405 · 04-14-2005

I'm totally APALLED......hehe only reporter like word I know.
I have to try this on the river where I get a lot kiddie wannabe hackers trying to jump on for free.
I can see it now kiddie on boat with mom and dad, "hey look I got us free internet" everything will resolve to gay porn. Damn I can't wait.........

Hydro

Starpoint · 04-14-2005

Quote:

Originally Posted by hydro27405

I'm totally APALLED......hehe only reporter like word I know.
I have to try this on the river where I get a lot kiddie wannabe hackers trying to jump on for free.
I can see it now kiddie on boat with mom and dad, "hey look I got us free internet" everything will resolve to gay porn. Damn I can't wait.........

Hydro

Hmmm now that would be fun to set up. Have a proxy that keeps a list of approved MAC's, they get normal net access.. non listed MAC's get gay porn or they sudden get a constant stream of pop ups, each say "PLEASE PAY FOR YOUR NET ACCESS"

Thorn · 04-14-2005

Quote:

Originally Posted by hydro27405

I'm totally APALLED......hehe only reporter like word I know.
I have to try this on the river where I get a lot kiddie wannabe hackers trying to jump on for free.
I can see it now kiddie on boat with mom and dad, "hey look I got us free internet" everything will resolve to gay porn. Damn I can't wait.........

Hydro

Make it resolve to beastilty sites. That way Mom and Dad pay out for a couple of years worth of psych workups on Junior.

A "nicer" alternative would be a "Theft Detection" page You know something like "Bandwidth Theft Detected ... Reported to the FBI" and then have everything resolve to the FBI / CERT sites.

Starpoint · 04-14-2005

Quote:

Originally Posted by Thorn

Make it resolve to beastilty sites. That way Mom and Dad pay out for a couple of years worth of psych workups on Junior.

A "nicer" alternative would be a "Theft Detection" page You know something like "Bandwidth Theft Detected ... Reported to the FBI" and then have everything resolve to the FBI / CERT sites.

Or... have it load their server up with a ton of virur's, trojans, worms etc..
basically turning their PC into a oversized paperweight

hydro27405 · 04-14-2005

Damn I'm not gonna get any real work done this summer if I keep reading these posts, too many deas and not enough summer....oh well I'll at least have fun.

Now I need to build 2 more towers this summer so please don't give me anymore FUN stuff to do......LOL

Hydro

beakmyn · 04-14-2005

Quote:

Originally Posted by Thorn

Make it resolve to beastilty sites. That way Mom and Dad pay out for a couple of years worth of psych workups on Junior.

A "nicer" alternative would be a "Theft Detection" page You know something like "Bandwidth Theft Detected ... Reported to the FBI" and then have everything resolve to the FBI / CERT sites.

with some scripting to grab computer name, MAC, etc... and put it on the screen.

04-24-2005

Is there any other software for making a soft AP , because the one from pctel doesnt work with my Atheros card?

nevtxjustin · 05-23-2005

Quote:

Originally Posted by Starpoint

Hmmm now that would be fun to set up. Have a proxy that keeps a list of approved MAC's, they get normal net access.. non listed MAC's get gay porn or they sudden get a constant stream of pop ups, each say "PLEASE PAY FOR YOUR NET ACCESS"

May I suggest www.gay.com or www.badpuppy.com ? <snicker>

hydro27405 · 07-08-2005

Well I've had it set up for about a month now with over 100 hits. Oh how I wish I could see mommy and daddys face when young little Johny was surfing gay porn. Hehehehehahahahahahhehehehhahaha

Hydro

SilverJohn · 07-14-2005

I get a 404 error. Anyone have a better link, or is this product not available?

SilverJohn · 07-14-2005

After reading the article, I realized there is no direct link to the software. Sorry, I'm having a low-caffeine moment.

03-28-2005	#1 (permalink)
Beetle Registered Member Join Date: Jun 2002 Location: D.C. Posts: 9	Evil Twin Access Points for Dummies or Airsnarf for Windows Because running a shell script in Linux just isn't easy enough for some folks, I put together a mini how-to on setting up a Windows XP box as a rogue AP to snarf usernames and passwords (or worse) from people at hotspots, etc. http://airsnarf.shmoo.com/airsnarf4win.html The basic gist is: SoftAP + TreeWalk DNS + Apache + manual local DNS cache poisoning = Airsnarf for Windows Perhaps now the fucking reporters will stop calling "Evil Twin" access points a technique used by "sophisticated hackers". Enjoy. Sincerely, Beetle

03-28-2005	#2 (permalink)
G8tK33per Asshole Emeritus Join Date: May 2003 Location: S.E. VA. Posts: 5,860	Thanks Beetle! __________________ "Butters, stop being such a pussy." Sons of Confederate Veterans

03-28-2005	#3 (permalink)
renderman Drunken Stumbler Join Date: Jun 2002 Location: Anywhere but Utah Posts: 1,792	I've smacked a few reporters around for the blatent lack of logic. Would you call someone setting up a fake ATM an 'evil twin'? Hell no. __________________ Never drink anything larger than your head! Scaramental Wine Taster for the Church Of WiFi Buy our book: RFID Security "I reject your reality, and substitute my own!" – Adam Savage CoWF WPA Hash Tables

03-29-2005	#4 (permalink)
Thorn Did you do the math? Join Date: Apr 2002 Location: Villa Straylight Posts: 9,967	Well done, Beetle. It is refreshing to see the IT media addressed in such a fashion. __________________ Thorn "You guys'll be chalk outlines without me."

07-14-2005	#14 (permalink)
SilverJohn Registered Member Join Date: Jul 2005 Posts: 3	Can't find SoftAP - web site gone? I get a 404 error. Anyone have a better link, or is this product not available?

04-14-2005	#5 (permalink)
hydro27405 Registered Member Join Date: Dec 2002 Location: MN Posts: 91	I'm totally APALLED......hehe only reporter like word I know. I have to try this on the river where I get a lot kiddie wannabe hackers trying to jump on for free. I can see it now kiddie on boat with mom and dad, "hey look I got us free internet" everything will resolve to gay porn. Damn I can't wait......... Hydro

04-14-2005	#9 (permalink)
hydro27405 Registered Member Join Date: Dec 2002 Location: MN Posts: 91	Damn I'm not gonna get any real work done this summer if I keep reading these posts, too many deas and not enough summer....oh well I'll at least have fun. Now I need to build 2 more towers this summer so please don't give me anymore FUN stuff to do......LOL Hydro

04-24-2005	#11 (permalink)
Flopik Posts: n/a	Is there any other software for making a soft AP , because the one from pctel doesnt work with my Atheros card?

07-08-2005	#13 (permalink)
hydro27405 Registered Member Join Date: Dec 2002 Location: MN Posts: 91	Well I've had it set up for about a month now with over 100 hits. Oh how I wish I could see mommy and daddys face when young little Johny was surfing gay porn. Hehehehehahahahahahhehehehhahaha Hydro

07-14-2005	#15 (permalink)
SilverJohn Registered Member Join Date: Jul 2005 Posts: 3	Nevermind. After reading the article, I realized there is no direct link to the software. Sorry, I'm having a low-caffeine moment.

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode