Computer security 101 computer security 101 Eric Pancer Computer Security Response Team
OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP...
Transcript of OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP...
![Page 1: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/1.jpg)
Pen-test Lab Initiative ➤ Wireless Security 101Jon Williams, CISSP
June 15, 2017
![Page 2: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/2.jpg)
Introductions
• OWASP • About me
• About you: who you are, where you’re from, what you’re looking to learn
![Page 3: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/3.jpg)
Pen-testing initiative
OWASP
![Page 4: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/4.jpg)
Mission• Create capability within CT chapter that
would allow our members to learn and practice ethical hacking skills in a safe environment
• Create forum for practitioners to share techniques and mentor peers in this space
![Page 5: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/5.jpg)
Jon Williams
![Page 6: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/6.jpg)
Jon Williams• Security Administrator
Banktivityiggsoftware.com
![Page 7: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/7.jpg)
Jon Williams• Security Administrator
Banktivity
• Security Researcher
iggsoftware.com
braindead-security.blogspot.com github.com/braindead-sec
![Page 8: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/8.jpg)
…and you?
![Page 9: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/9.jpg)
ObjectiveTo raise awareness about threats to wi-fi users and techniques for defending against those threats.
![Page 10: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/10.jpg)
Agenda
• Overview: wireless security concepts • Demonstration: wireless attacks • Review: risks to remote workers • Game time: defensive techniques
![Page 11: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/11.jpg)
Wireless security concepts
Overview
![Page 12: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/12.jpg)
The Million-Dollar Question
“What is my most valuable asset?”
![Page 13: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/13.jpg)
Wireless Internet Access
(simplified)
![Page 14: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/14.jpg)
Wireless Internet Access
(simplified)
![Page 15: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/15.jpg)
Company IT
Wireless Internet Access
(simplified)
![Page 16: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/16.jpg)
Wireless Internet Access
(simplified)
![Page 17: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/17.jpg)
You (and your IT)
Wireless Internet Access
(simplified)
![Page 18: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/18.jpg)
Wireless Internet Access
(simplified)
![Page 19: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/19.jpg)
ISPs
Wireless Internet Access
(simplified)
![Page 20: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/20.jpg)
Wireless Internet Access
(simplified)
![Page 21: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/21.jpg)
???
Wireless Internet Access
(simplified)
![Page 22: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/22.jpg)
Local Network - No Encryption
![Page 23: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/23.jpg)
Local Network - With Encryption
![Page 24: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/24.jpg)
Threats facing remote workers
Wireless Attacks
![Page 25: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/25.jpg)
Radio Monitoring
Unencrypted Wireless Network
![Page 26: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/26.jpg)
Radio Monitoring
Unencrypted Wireless Network
![Page 27: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/27.jpg)
Rogue Access Point
Legit-WiFi
![Page 28: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/28.jpg)
Rogue Access Point
Legit-WiFi
![Page 29: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/29.jpg)
Rogue Access Point
Legit-WiFi“Legit”-WiFi
![Page 30: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/30.jpg)
Rogue Access Point
Legit-WiFi“Legit”-WiFi
![Page 31: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/31.jpg)
Man-in-the-Middle
![Page 32: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/32.jpg)
Man-in-the-Middle
![Page 33: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/33.jpg)
Man-in-the-Middle
• Monitor
• Intercept
• Inject
![Page 34: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/34.jpg)
Session Hijacking
1. Log in to website, get cookie
2. Browse site using cookie for authentication
3. Log out, remove cookie
![Page 35: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/35.jpg)
Session Hijacking
1. Log in to website, get cookie
2. Browse site using cookie for authentication
3. Log out, remove cookie
2.5. Steal cookie, plant in browser, pretend to be authenticated user without logging in
![Page 36: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/36.jpg)
Credential Theft
• Rogue access point • Captive portal • Fake login form
![Page 37: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/37.jpg)
Credential Theft
• Rogue access point • Captive portal • Fake login form
• Looks legit • Login fails • Pwnd
![Page 38: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/38.jpg)
Risk Review
• Unencrypted wifi • Rogue access point • Passive connections • Evil twin ➤ man-in-the-middle • Unencrypted login forms • Password reuse • Insecure cookies ➤ session hijacking
![Page 39: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/39.jpg)
Mitigating risks
Game Time!
![Page 40: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/40.jpg)
Any questions?
![Page 41: OWASP Wireless Security 101 · Pen-test Lab Initiative Wireless Security 101 Jon Williams, CISSP June 15, 2017](https://reader034.fdocuments.net/reader034/viewer/2022050109/5f46cd7afc27f03ff11290fa/html5/thumbnails/41.jpg)
Thank you!Stay safe out there.