Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Wi-Fiによるモダン ネットストーキング

Avatar for Akira KUMAGAI Akira KUMAGAI
August 24, 2013
Technology
0
1.9k

Wi-Fiによるモダン ネットストーキング

Avatar for Akira KUMAGAI

Akira KUMAGAI

August 24, 2013
Tweet

More Decks by Akira KUMAGAI

See All by Akira KUMAGAI
Wi-Fiの混雑に向き合う基本的知識とオフィスWi-Fi提供時の課題
Avatar for Akira KUMAGAI tinbotu
0
130
JANOG39会場ネットワークの裏話
Avatar for Akira KUMAGAI tinbotu
0
380
Wi-Fi再入門〜見えない電波を知識で見抜く
Avatar for Akira KUMAGAI tinbotu
71
160k

Other Decks in Technology

See All in Technology
SES向け、生成AI時代におけるエンジニアリングとセキュリティ
Avatar for LongbowXXX longbowxxx
0
290
自己管理型チームと個人のセルフマネジメント 〜モチベーション編〜
Avatar for KAKEHASHI kakehashi
PRO
5
1.8k
Oracle Database@Azure:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
3
260
Keynoteから見るAWSの頭の中
Avatar for NRI Netcom nrinetcom
PRO
1
160
会社紹介資料 / Sansan Company Profile
Avatar for Sansan, Inc. sansan33
PRO
11
390k
マーケットプレイス版Oracle WebCenter Content For OCI
Avatar for oracle4engineer oracle4engineer
PRO
5
1.5k
迷わない!AI×MCP連携のリファレンスアーキテクチャ完全ガイド
Avatar for CData Software Japan cdataj
0
180
業務の煩悩を祓うAI活用術108選 / AI 108 Usages
Avatar for 株式会社スマートバンク smartbank
9
19k
ルネサンス開発者を育てる 1on1支援AIエージェント
Avatar for Yusuke Shimizu yusukeshimizu
0
130
ECS_EKS以外の選択肢_ROSA入門_.pdf
Avatar for モブエンジニア(Masaki Okuda) masakiokuda
1
120
Next.js 16の新機能 Cache Components について
Avatar for sutetotanuki sutetotanuki
0
210
形式手法特論:コンパイラの「正しさ」は証明できるか? #burikaigi / BuriKaigi 2026
Avatar for y_taka_23 ytaka23
15
3.9k

Featured

See All Featured
JavaScript: Past, Present, and Future - NDC Porto 2020
Avatar for David Neal reverentgeek
52
5.8k
Measuring Dark Social's Impact On Conversion and Attribution
Avatar for Stephen Akadiri stephenakadiri
1
100
Code Reviewing Like a Champion
Avatar for maltzj maltzj
527
40k
Navigating Team Friction
Avatar for Lara Hogan lara
191
16k
The Art of Delivering Value - GDevCon NA Keynote
Avatar for David Neal reverentgeek
16
1.8k
Building Flexible Design Systems
Avatar for Yesenia Perez-Cruz yeseniaperezcruz
330
40k
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
290
How GitHub (no longer) Works
Avatar for Zach Holman holman
316
140k
Pawsitive SEO: Lessons from My Dog (and Many Mistakes) on Thriving as a Consultant in the Age of AI
Avatar for David Carrasco davidcarrasco
0
39
Redefining SEO in the New Era of Traffic Generation
Avatar for Szymon szymonslowik
1
180
Building Experiences: Design Systems, User Experience, and Full Site Editing
Avatar for Michelle Schulp Hunt marktimemedia
0
360
Imperfection Machines: The Place of Print at Facebook
Avatar for Scott Boms scottboms
269
13k

Transcript

  1. 8J'JʹΑΔ Ϟμϯ ωοτετʔΩϯά Akira KUMAGAI @tinbotu 2013ՆٳΈࣗ༝ݚڀ

  2. ͋ͱͰσϞΛ͠·͢ • ݸਓΛ௚઀ಛఆՄೳͳ৘ใ͸͋Γ·ͤΜ • ؒ઀తʹ͸ಛఆͷࡐྉʹͳΓಘΔ͔΋ • ಉҙ͍͚ͨͩͳ͍৔߹͸ WiFi σόΠεͷ ిݯΛ੾͍ͬͯͩ͘͞

  3. σϞͷର৅ʹͳΔΑ

  4. WiFi ͷ͘͠Έ 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(਌ػ) Λ୳͢ 2.ΫϥΠΞϯτ͕ AP ͷҰཡΛදࣔ 3.Ϣʔβ͕

    AP Λબ୒ 4.ೝূ 5.઀ଓ׬ྃ

  5. APҰཡΛදࣔ

  6. Ϣʔβ͕APΛબ୒

  7. ύεϫʔυೖྗ

  8. ύεϫʔυೖྗ ॳճ͚ͩͩΖ

  9. WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτ(ࢠػ) ͕ AP(਌ػ) Λ୳͢ 2.هԱ͍ͯ͠Δ AP͕͋Ε͹ 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.઀ଓ׬ྃ

  10. WiFi ͷ͘͠Έ(2) 1.ΫϥΠΞϯτʢࢠػʣ͕ AP Λ୳͢ 2.هԱ͍ͯ͠ΔAP͕͋Ε͹ 3.هԱ͍ͯ͠ΔύεϫʔυͰೝূ 4.઀ଓ׬ྃ શࣗಈ

  11. ΋͏গ͠ৄ͘͠

  12. ୺຤͸਌ػ͕ͳ͍ͱ ઀ଓͰ͖ͳ͍

  13. ୺຤͕AP(਌ػ)ͷଘࡏΛ஌Δํ๏͸2ͭ • AP͕ఆظ์ૹ͍ͯ͠ΔϏʔίϯ*1 • ΞΫςΟϒͳݕग़ཁٻ*2 *1 IEEE802.11 00/1000 Beacon Frame,

    MAC(APͷBSSID), SSID, Capability, BI, TIM ͳͲΛಛఆͷνϟωϧʹͯ௨ৗ20ʙ500msִؒͰૹ৴ *2 IEEE802.11 00/0100 Probe Request, MAC(୺຤ͷMACΞυϨε), SSID(ۭͳΒϒϩʔυΩϟετ) ɹ IEEE802.11 00/0101 Probe Response, େମϏʔίϯͱಉ͡৘ใྔΛಛఆͷ୺຤΁Ԡ౴

  14. AP͸௨৴͕ͳ͍ͱ͖΋ ࣗ෼ͷSSIDͳͲΛఆظతʹ์ૹ͍ͯ͠Δ ͜ΕΛBeacon(Ϗʔίϯ) ͱݺͼ·͢

  15. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ IEEE802.11 Probe Request

  16. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ

    IEEE802.11 Probe Request

  17. ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ AP ݕग़ཁٻ (Probe Request) ʮAP ୭͔͍·͔͢ʯ

    AP ݕग़Ԡ౴ (Probe Response) ʮ͸͍ɹԶͷ໊͸”MyHomeBuffalo”ʯ IEEE802.11 Probe Request
  18. None

  19. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ

  20. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ ·ͨ͸ʁ

  21. ୺຤(ࢠػ)͸ϏʔίϯΛड৴͢Δ͔ɺ·ͨ͸ ݕग़ཁٻΛੵۃతʹૹ৴͠ɺAP͔ΒͷԠ౴ ͕͋Ε͹ AP ΛೝࣝͰ͖Δ ݕग़ཁٻ(Probe Request)ͬͯԿΑ AP͕Ϗʔίϯग़ͯ͠Ε͹ଘࡏ͕Θ͔Δ͡ΌΜ ͍Βͳ͍ͷͰ͸ɻ ·ͨ͸ʁ

  22. ݕग़ཁٻ͕ඞཁ!

  23. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔)

  24. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍

  25. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •

    SSIDΛӅͯ͠ΔAP͸ͦ΋ͦ΋ݟ͑ͳ͍

  26. ݕग़ཁٻ͕ඞཁ! • ܨ͍͗ͨSSID͕طʹΘ͔ͬͯΔͳΒɺͦͷ SSIDΛ໊ࢦ͠Ͱݕग़ཁٻͨ͠΄͏͕ᴴ͔ʹ ଎͍(ೋճ໨Ҏ߱ͷ઀ଓͱ͔) • WiFi ͸νϟωϧ͕͍ͬͺ͍͋Δ͠ɺλΠ ϛϯά͕ѱ͍ͱϏʔίϯΛड৴Ͱ͖ͳ͍ •

    SSIDΛӅͯ͠ΔAP͸ͦ΋ͦ΋ݟ͑ͳ͍

  27. SSID ໊ࢦ͠Ͱݕग़ཁٻ

  28. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  29. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ

  30. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ ͸΍͍

  31. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़Ԡ౴ (Probe

    Response) ʮ͸͍ʯ ͸΍͍ ݕग़ϛε΋ͳ͍

  32. ͸΍͍͚Ͳ

  33. ໰୊఺

  34. • ࢠػ͸ࣗ෼ͷډ৔ॴ͕Θ͔ͬͯͳ͍.
 AP͕ແ͍͸ͣͷ৔ॴͰ΋ Probe Request ͢Δ ໰୊఺

  35. • ࢠػ͸ࣗ෼ͷډ৔ॴ͕Θ͔ͬͯͳ͍.
 AP͕ແ͍͸ͣͷ৔ॴͰ΋ Probe Request ͢Δ • Ұ౓઀ଓهԱͤͨ͞Β͠͹Β͘ͷؒ Probe Request

    Λૹग़͠ଓ͚Δ(࣮૷ґଘ) ໰୊఺

  36. ͨͱ͑͹౦ژʙതଟΛҠಈ͠·͢

  37. ͨͱ͑͹౦ژʙതଟΛҠಈ͠·͢ ࣗ୐ͷAPʹର͢Δݕग़ཁٻ͸ ՈΛग़ͨॠ͔ؒΒ͢΂ͯແବܸͪ ʢి஑ͱ͔ͷແବ͸·͋ࠣ຤ͳ໰୊ʣ

  38. SSID ໊ࢦ͠Ͱݕग़ཁٻ

  39. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  40. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  41. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ

  42. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request)

  43. SSID ໊ࢦ͠Ͱݕग़ཁٻ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe

    Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ʮ“MyHomeBuffalo”͞Μ͍·͔͢ʯ AP ݕग़ཁٻ (Probe Request) ͜ͷiPhone͕͋ΒΏΔग़ઌͰ “MyHomeBuffalo”ͬͯͷΛཁٻͯ͠ΔΑ͏ͩ

  44. ࣮ࡍʹݟͯΈΑ͏

  45. None

  46. ࣗ෼ͷϊʔτPC(b8:f6:b1:14:fc:1b)͕
 iis-visitor ͬͯͷΛ୳͍ͯ͠Δ

  47. iis-visitor
 Ͳ͔͜ͷήετ༻WiFiͬΆ͍

  48. iis-visitor
 Ͳ͔͜ͷήετ༻WiFiͬΆ͍ ઀ଓ֮ͨ͑͋͠Δ

  49. Probe Request ʹؚ·ΕΔ಺༰

  50. Probe Request ʹؚ·ΕΔ಺༰ • ୺຤ͷMACΞυϨε • ୺຤͕઀ଓͨ͜͠ͱͷ͋Δ AP ͷ ESSID


    ʢෳ਺͔΋ʣ • APͷBSSID(MACΞυϨε)͸ؚ·Εͳ͍
  51. None
  52. None

  53. ͜ͷ"QQMF੡඼ͷॴ༗ऀ͸Ϊʔਫʹߦͬͨ͜ͱ ͕͋ͬͯTIJCVIPVTFʹ΋ߦͬͨ͜ͱ͕͋ͬͯ TJOBQʹ΋ߦͬͨ͜ͱ͕͋ͬͯUBLBOP͞Μͱ ໘͕ࣝ͋ΔͩΖ͏ɻ

  54. ΍͹͍

  55. ετʔΩϯά΁ͷԠ༻

  56. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ

  57. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ • WiFi ͕௚઀ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹ͸ωοτετʔΩϯά͡Όͳ͍

  58. ετʔΩϯά΁ͷԠ༻ • ׬શʹडಈ(passive)ͳετʔΩϯάͳͷͰɺ ୺຤ଆͰ͸߈ܸݕ஌͕ෆՄೳ • WiFi ͕௚઀ಧ͘ൣғʹߦ͘ඞཁ͕͋ͬͯɺ ݫີʹ͸ωοτετʔΩϯά͡Όͳ͍ • λʔήοτͷ୺຤ͷMACΞυϨε͕Θ͔Β

    ͳ͍ͱ୭͕୭͔ͩΘ͔Βͳ͍

  59. MACΞυϨεΛ஌Δํ๏

  60. MACΞυϨεΛ஌Δํ๏ λʔήοτͷ୺຤ʹ௚઀઀৮͢Δඞཁ͕͋Δ… ͦΕ͕ແཧͳΒਪଌ͢ΔͷΈ

  61. σϞ

  62. None

  63. ଞͷωλ • BSSID(MAC) ͔ΒҐஔ৘ใΛҾ͚ΔAPI • ESSID ͔Β BSSID Λਪଌ͠ Probe

    Request ͔Β୺຤ͷաڈͷҐஔ৘ใΛਪ ଌ

  64. ๏཯తͳ࿩ • ి೾๏ ୈ59৚ʢൿີͷอޢʣ • Կਓ΋๏཯ʹผஈͷఆΊ͕͋Δ৔߹Λআ͘΄͔ɺಛఆͷ૬खํʹର͠ ͯߦΘΕΔແઢ௨৴ʢిؾ௨৴ࣄۀ๏ୈ4৚ୈ1߲ຢ͸ୈ164৚ୈ2߲ͷ ௨৴Ͱ͋ Δ΋ͷΛআ͘ɻୈ109৚ฒͼʹୈ109৚ͷ2ୈ2߲ٴͼୈ3߲ʹ͓ ͍ͯಉ͡ɻʣΛ๣डͯͦ͠ͷଘࡏए͘͠͸಺༰Λ࿙Β͠ɺຢ͸͜ΕΛ઄

    ༻ͯ͠͸ͳΒͳ͍ɻ

  65. __END__