Cafe Cracks: Attacks on Unsecured Wireless Networks

Paul Moceri (paul.moceri@gmail.com) and Troy Ruths (manlytwah@gmail.com)

Abstract

Mobile users demand high connectivity in today's world, often at the price of security. Requiring Internet access at the airport, public buildings, and restaurants, users will easily sacrifice a secure connection for a fast and reliable one. By broadcasting rogue access points at these compromising locations, crackers can launch effective Man-in-the-Middle attacks.  Our developed crack, Cafe Crack, provides a platform built from open source software for deploying rogue access points and sophisticated Man-in-the-Middle attacks. Built around the Untangle Server software, Cafe Crack allows the hacker to dynamically measure, monitor and redirect network traffic.  This paper will provide an example of DNS spoofing using the Cafe Crack platform and then provide simple and effective protection techniques against harmful rogue AP attacks. 

Keywords

Spoofing, phishing, DNS, DNSSEC, VPN, Public VPN, Untangle, Man-in-the-Middle, wireless, 802.11, Rogue AP, Open Source, Evil Twin

Table of Contents

• 1 Introduction
  • 1.1 Rogue AP Attack
  • 1.2 Airsnarf
  • 1.3 Detecting Rogue APs
• 2 Cafe Crack
  • 2.1 Attack Machine
  • 2.2 Components
• 3 Implementation
  • 3.1 Routing
  • 3.2 Dynamic Host Configuration
  • 3.3 DNS
  • 3.4 DNS Redirection
  • 3.5 Webserver
    • 3.5.1 GMail Phishing Site
    • 3.5.2 PHP and Redirection
  • 3.6 Attacks
• 4 Protecting Yourself
  • 4.1 Securing DNS
    • 4.1.1 Third-Party DNS
    • 4.1.2 DNS Security Extensions (DNSSEC)
  • 4.2 Require HTTPS
  • 4.3 VPN
    • 4.3.1 Private VPN
    • 4.3.2 Public VPN Service
• 5 Conclusion
• References
• Acronyms

View the complete report online

Shift-click to download the paper in Adobe Acrobat format