LEXO | We don't learn for the school, we learn for life. » Networking

Cisco Aironet 1250 with WPA

lexo — Fri, 23 Apr 2010 18:01:28 +0000

Testing a Cisco Aironet 1250 series I needed to enable WPA, so these are the steps I did it via web GUI:

In SECURITY > Encryption Manager
Set Cipher: TKIP
Set Encryption Keys clean

in SECURITY > SSID Manager > Client Authenticated Key Management
Set Key Management: Mandatory
Enable WPA with you preferred version, and create your WPA Pre-shared Key as you want

And that’s all..

Sources:
Wi-Fi Protected Access 2 (WPA 2) Configuration Example – Cisco Systems

WPA Configuration Overview – Cisco Systems

trapper sniffer

lexo — Thu, 14 Jan 2010 04:57:19 +0000

trapper is a sniffer & ARP poisoning tool made in perl. The current version supports sniffing protocols like HTTP, FTP, telnet POP3, IMAP, SMTP, MSN, IRC, SMB, SIP, TeamSpeak and VCN. Also this tool include the attack known as APR ( ARP Poison Routing ). More protocols and types of attacks will be added in the future. The development of Trapper was inspired in the excellent tool Cain, but we wanted a tool that also worked under Linux/Unix.

Features:
1. Supported protocols: HTTP, SMPT, IMAP, SMB, SIP, POP3, FTP, Telnet, IRC
2. HTTP Cookie Sniffing
3. IRC Chat Sniffing
4. SMPT sniffing (attachments supported)
5. MSN Chat Sniffing
6. ARP poison tool
7. Different types of ARP attack
8. Fake MAC tool
9. Firefox cookie injector
10. Passwords are saved automatically
11. Lenght of the packet option
12. Automatic Network Detection
13. Trapper.conf: You can add your own parameters to sniff HTTP values (yes like Cain); also choose if you wanna save or not the sniffed data and put your own ports on supported protocols

Source:
http://nediam.com.mx/trapper/home.html

IP address networks by country

lexo — Wed, 06 Jan 2010 05:25:40 +0000

Some times there’s too many attacks who come from other countries, specially China, USA or Russia and we don’t need that these countries access to our network(or fuck our Internet BW), so then we need block it (yes I know, the best rule for our firewall is block all by default and permit the services and networks, but we’re going to think that we need to permit all and block only some countries).

So, for make it, we need to know the IP address networks of each country who we want to block (or accept in the ideal scenario), and we can use these sites:
http://blogama.org/country_query.php?country=ISO 3166
http://www.ipdeny.com/ipblocks/data/countries

The codes (ISO 3166) of the country are available in http://www.blogama.org/country.txt

n2n: a Layer Two Peer-to-Peer VPN

lexo — Tue, 08 Dec 2009 21:15:55 +0000

n2n is a layer-two peer-to-peer virtual private network (VPN) which allows users to exploit features typical of P2P applications at network instead of application level. This means that users can gain native IP visibility (e.g. two PCs belonging to the same n2n network can ping each other) and be reachable with the same network IP address regardless of the network where they currently belong. In a nutshell, as OpenVPN moved SSL from application (e.g. used to implement the https protocol) to network protocol, n2n moves P2P from application to network level.

The main n2n design features are:

* An n2n is an encrypted layer two private network based on a P2P protocol.
* Encryption is performed on edge nodes using open protocols with user-defined encryption keys: you control your security without delegating it to companies as it happens with Skype or Hamachi.
* Each n2n user can simultaneously belong to multiple networks (a.k.a. communities).
* Ability to cross NAT and firewalls in the reverse traffic direction (i.e. from outside to inside) so that n2n nodes are reachable even if running on a private network. Firewalls no longer are an obstacle to direct communications at IP level.
* n2n networks are not meant to be self-contained, but it is possible to route traffic across n2n and non-n2n networks.

Source:
http://www.ntop.org/n2n/

El Internet de los primitivos

lexo — Mon, 19 Jan 2009 18:41:04 +0000

Hace tiempo que me encontré éste sitio: The Bongo Project, creado por Daniel Reid, un estudiante de Algoma University. Y no es más que un proyecto con el cual es posible conseguir trasmitir datos a través del sonido emitido por Bongos.

Las pruebas realizadas fueron hechas con un simple ping a una velocidad de 2bps.