WiFiSlax es una distribución GNU/Linux diseñada y estructurada para la auditoría de seguridad, especializada en evaluaciones de seguridad inalámbrica.
Contiene una amplia lista de herramientas de seguridad y auditoría donde se incluyen escáneres de puertos, de servicios y de vulnerabilidades, herramientas para creación y diseño de exploits, ‘sniffers’, herramientas de análisis forense y herramientas para la evaluación de la seguridad de dispositivos wíreless.
En esta presentación oficial de la versión 4.0 se mostrarán una serie de importantes cambios estructurales que han permitido al grupo de desarrolladores continuar innovando en cuanto al soporte hardware tal y como han hecho en sus anteriores versiones anticipándose al resto de distribuciones. Estos cambios les han permitido mantenerse en la vanguardia en las tecnologías inalámbricas.
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Sergio González - WiFiSlax 4.0 [RootedCON 2010]
1. WiFiSlax 4.0 beta
Advances and improvements
Congreso de Seguridad ~ Rooted CON’2010
2. What was?
• Focused on Wireless Audit
• Latest tools for Wireless Audit
• Drivers of the most common chipsets in our
laptops (innovating with packet injection support)
• Ease of use for the uninitiated in GNU/Linux
• Launchers and GUI tools
• Basic help in spanish
Congreso de Seguridad ~ Rooted CON’2010 2
4. What?
• GNU/Linux distribution
• Debian Stable based
• Nowadays, not only Wireless Security:
/NETWORK VULNERABILITY & PENTESTING
/BLUETOOTH /RFID /IRDA /SERIAL PORT /CRACKING
/REVERSING /FORENSIC
• Compatible with other system
• GRUB as boot loader
Congreso de Seguridad ~ Rooted CON’2010 4
5. What?
• Live CD/DVD/USB
• Kernel 2.6.32.5 SMP
• KDE 3.5.10|¿KDE 4?
– Compiz Fusion included
– Drivers ATI / Drivers NVIDIA
• Automount new drives
– RO/RW over NTFS, HFS and NAS
• Automount new devices
– Wireless devices / mouse / etc
Congreso de Seguridad ~ Rooted CON’2010 5
6. Which support?
• Ease of use regardless of driver
• Launch GUI:
– Broadcom bcm43xx
– Intel IPW2200, IPW3945, IPW4965
– Ralink rt2570, rt73
– Prism, Prism2
– Realtek rt8180/rt8185, rt8187
– Atheros mode managed, monitor, master
• Problems with your chipset?
– usbview, lsusb, lspci, dmesg, etc...
Congreso de Seguridad ~ Rooted CON’2010 6
10. What included?
• Wi-Spy
– Channels spectrum analyzer
Congreso de Seguridad ~ Rooted CON’2010 1
0
11. Aircrack-ng-patch
• Anticipating the next speaker:
• WiFiSlax 4.0 is the only distribution that is not
vulnerable to 0-day of Airodump-ng 1.0
[No more details, yet]
– Thanks to Iñaki L. ;-)
Congreso de Seguridad ~ Rooted CON’2010 1
1
12. What included?
• More audit tools:
– Zenmap
– Wireshark
– ettercap
– asleap
– Scapy
– Etc.
Congreso de Seguridad ~ Rooted CON’2010 1
2
13. What included?
• wesside-ng
– Automatic cracking WEP
• WifiZoo v1.3
– WEP/WPA support (only in WiFiSlax 4)
Congreso de Seguridad ~ Rooted CON’2010 1
3
14. Other attacks
• Karma
• Airbase-ng
• Fake APs (MitM and hirte attack) auto-connect for
Windows & MacOS clients & ¿mobile devices? ;-)
Congreso de Seguridad ~ Rooted CON’2010 1
4
15. What included?
• Bluetooth support:
• airotooth.sh
• Bluetooth Sniffing
• BTSniff for chipsets CSR BC4 Flash/RAM
• BTCrack for Linux
Congreso de Seguridad ~ Rooted CON’2010 1
5
16. What included?
• RFID tools: • IrDA & Serial port:
• 3-G support:
• Vodafone
• Yoigo
• Movistar ?
Congreso de Seguridad ~ Rooted CON’2010 1
6
19. What included?
• Recomposition of TCP sessions:
• airdecap-ng
• Form Fields without SSL encryption
• Uncipher, WEP, WPA, WPA2 connections
• Xplico
– Data mining and network forensic
• Wireshark
• Uncipher, WEP and WPA connections
• VoIP
Congreso de Seguridad ~ Rooted CON’2010 1
9
20. What included?
• Karmetasploit
• Rogue AP attacks for e-mail and web password
interception, cookie stealing and insecure services
(POP3, FTP, SMB, etc)
• Lorcon
• Packet injection library for IEEE 802.11
• Lorcon2
• Packet and shellcode injection with Metasploit
Congreso de Seguridad ~ Rooted CON’2010 2
0
21. What included?
• Network security & Information gathering:
Congreso de Seguridad ~ Rooted CON’2010 2
1
22. What included?
• DNS: • WEB:
…and DioNiSio
Congreso de Seguridad ~ Rooted CON’2010 2
2
23. What do you expect?
• For n-th time:
WEP IS INSECURE BY DESING!
– Vendors such as Ubiquiti don’t support
• Forget poorly implemented ciphers
– Don't exist strong passwords
– Security must be transparent for the user
Congreso de Seguridad ~ Rooted CON’2010 2
3
24. What do you expect?
• Efficient alternative to another distributions
• Abandon WEP and WPA
• Improving wireless security
• Automate and collect audit tools
• Promote new security standards
• Fostering interest in security
Congreso de Seguridad ~ Rooted CON’2010 2
4
25. Updates?
• Update packages :
– apt-get / aptitude
• WiFiSlax 4.0 repository:
– Valid for all Debian
Congreso de Seguridad ~ Rooted CON’2010 2
5
26. Who?
• Staff elhacker.net ?
• Staff Seguridadwireless.net ?
pers
ve l o g s
of de thin
roup make and
ght g w to
ry ti ho
A ve know se, effe ctive
•
who r, conci
clea ient.
effic
Congreso de Seguridad ~ Rooted CON’2010 2
6
27. Where?
• WiFiSlax.com
Oficial Webpage: http://www.wifislax.com/
• WiFiSlax @ LinkedIn
Oficial Group:
http://www.linkedin.com/groups?gid=2066315
Congreso de Seguridad ~ Rooted CON’2010 2
7
28. Questions?
• Thanks to:
– SeguridadWireless.net
– BrutalSec.net
– …anyone wishing to include
their tools!
Congreso de Seguridad ~ Rooted CON’2010 2
8
29. www.wifislax.com
Sergio González
Congreso de Seguridad ~ Rooted CON’2010