Active Topics

 


Page 1 of 2 1 2
Reply
Thread Tools
romx is offline romx
2007-03-24 , 09:05
Posts: 5 | Thanked: 0 times | Joined on Feb 2007
#1
"A Kingdom for a program!"
Can something make a program for 'deep drill' scanning of wi-fi access points?
This program will be very useful!

Simple algoritm of deep drills of APs.

1. Scan a WiFi APs

2. Get list of unprotected APs

3. Trying to connect to (next) AP. If YES go to 4 if NO (MAC table protected) to 3 again.

4. If succesfully connected, trying to get IP (gateway, DNS) via DHCP.

5. If success, then ping by name any known good address (google.com for ex.), if fail go to 9.

6. If good ping, then trying to connect to 80 port.

7. If bad, trying to ping by IP. If 'ping-by-IP' good, then it's an AP with broken DNS but opened, set a known good DNS and ping by name again.

8. check content from 80 port, if got any 'ogin' or 'assword' word, then it's a password protected (usually 'non-free') AP, go to p.3. If no 'ogin' or 'assword', and google connected, then it's good free AP.

9. trying to set up a known IP's like 192.168.1.* (def.gw 192.168.1.1), 192.168.0.*, 10.0.0.* (or something else) and known good external DNSes (if it good open unprotected AP's without good DHCP it may helps), then go to 6.

10. write a good APs to list and display list to user (or automatically connecting and trying to get mail, renew rss feeds and so on).
 
lucky-luke is offline lucky-luke
2007-03-24 , 10:27
Posts: 91 | Thanked: 5 times | Joined on Aug 2006
#2
I supose that could be made with python. It looks not so complicated.
It would be a "need to have" script.
 
n800user is offline n800user
2007-03-24 , 12:38
Posts: 23 | Thanked: 0 times | Joined on Mar 2007
#3
I join this request
 
quentinwolf is offline quentinwolf
2007-03-24 , 12:48
Posts: 5 | Thanked: 0 times | Joined on Mar 2007 @ Alberta, Canada
#4
I also join this request. Would be a very handy utility to have on the 700 / n800.
 
Karel Jansens's Avatar
Karel Jansens is offline Karel Jansens
2007-03-24 , 12:58
Posts: 3,220 | Thanked: 326 times | Joined on Oct 2005 @ "Almost there!" (Monte Christo, Count of)
#5
I have only a vague idea of what you're talking about but if it helps me getting a better WiFi-connection in the wild outdoors, me wantee.
 
disq is offline disq
2007-03-24 , 12:59
Posts: 191 | Thanked: 10 times | Joined on Feb 2006
#6
yep. good idea.
 
Milhouse is offline Milhouse
2007-03-24 , 13:13
Posts: 3,401 | Thanked: 1,255 times | Joined on Nov 2005 @ London, UK
#7
Enhancement (already!): A history of past scans would be useful to speed up finding a usable AP which has been scanned (and known to work) in the past.

+1 vote
 
Toontje's Avatar
Toontje is offline Toontje
2007-03-25 , 09:43
Posts: 304 | Thanked: 11 times | Joined on Feb 2007 @ Barcelona, Spain
#8
I second the request although it would take all the fun out of finding 'illegal' internet access yourself. :-)
__________________
The Nokia 770 forums are alive again on http://nokia770.com/forum
 
marlaw is offline marlaw
2007-04-18 , 15:53
Posts: 8 | Thanked: 1 time | Joined on Apr 2007
#9
I'm really interested in something like this too.
I'm just about to start development with python and I will try to do something.
In theory, you can do all this with a shell script ..
If anyone wants to collaborate with me you can send me a message.

I would even add, if the network is encrypted with wpa/wpa2/wep try dictionary attack, if doesn't work and is wep try collecting IV's to guess the key.

:P
 
treasonx is offline treasonx
2007-04-18 , 16:03
Posts: 27 | Thanked: 0 times | Joined on Mar 2007
#10
an automated way of running aircrack on a wep network would be a good addition.
 
Reply
Page 1 of 2 1 2

« Previous Thread | Next Thread »

 
Forum Jump


All times are GMT. The time now is 01:35.

Contact Us - Home - Archive - Top