A new method to obtaining login credentials on WPA2/Enterprise secured networks. This is a social engineering attack, so to speak, in which the attacker spoofs an AP and then routes all traffic through localhost which has a smart PHP script that does browser/OS detection, then embeds a fake WPA2 login window into a webpage. Check it out!
Get it here! http://weaknetlabs.com/linux
Get the Manual Here: http://weaknetlabs.com/multimedia/papers/WNLA_SAg.pdf
Get the Kernel Headers: http://weaknetlabs.com/linux/applications/linux-headers-2.6.35-weakerthan2+.deb
Thanks to everyone! Your support means the world to me! <3
~Douglas.
The diploma came!
High quality paper, nice folder, and made me smile. 
~Douglas.
Our latest and greatest hardware review, made possible by donations. The Globalsat BU-353 GPS receiver is about $40 on several websites including Amazon. This device is pretty much plug and play! I will be adding gpsd to WEAKERTHAN 2, but for now here are the instructions to get any wardriving enthusiast out on the road logging coordinates! (these will be added to the System Administration Manual for WNLA as well, soon.)
plug in the device.
make sure you have a running inet connection (not needed in WEAKERTHAN 2+)
apt-get update && apt-get install gpsd
This will start the service automatically. Optionally, you could install xgps with:
apt-get install gpsd-clients
to view a good clear layout of GPS satellites.
Now you can run Airodump-ng and see your coordinates at the top of the screen by doing:
cd /tmp && mkdir gps && cd gps && airodump-ng --gps --write out
Below are a few screenshots I took of my position at school:
Figure 1: Airodump-NG’s GPS output from the device.
Figure 2: New Field in Airodump-NG showing location.
Figure 3: XGPS satellites view
This device works great with gpsd version 2.39 This is available in the repositories that came with WNLAv4.1k and will be precompiled into WNLAv4.2 (WEAKERTHAN 2). Use this device outdoors. At first, i thought that the device was broken, as xgps stated “NO FIX <#> seconds” for a long time. Meanwhile, all I had to do was go outside 
This device was actually recommended by MisterX from the Aircrack-ng forums as well.
MisterX posted the PDF of the Defcon Presentation Here And there was a free webinar available Here from Airtight Networks on the Hole196. It’s making more sense now that I have been studying the Free CWAP and the CWSP Book that I purchased. It’s not a crack in the encryption, and it’s an insider attack. It seems that more and more insider attacks have been happening recently, so this is now a serious issue. I’d recommend reading the PDF and watching the free webinar, they are quite informative.
Possible Meru Networks Solution (which was given previously by WiFiNetNews.com):
“The best lesson I can take away from this hole? Make sure you’re running virtual SSIDs if you have that option to separate guests, contractors, and others from employees; or to isolate different kinds of operations within your company.” – WiFiNetNews
I am still in the process of studying for the CWNA/CWSP so I will be talking about this in upcoming episodes of TtE I am sure.
~Douglas.
Calling all wireless drivers, please submit wireless drivers that need patched, etc. I am fairly limited in hardware due to my house fire, but am still receiving donations. I am going to use the newest kernel I possibly can, making sure that mac8011 can perform fragmentation attacks. So far, mac80211 seemed a bit broken on 2.6.35, but I am chugging away trying to get everything sorted out! I will keep you all posted here on the weblog during development. If there are any tools or drivers that were not in the last release that you would like to see, now is the time to submit them to weaknetlabs[at]gmail[dot]com please!
Thanks to Patrick Meenehan, WNL can now continue development for Wireless and GPS applications! We received a generous donation from him and are very grateful!
The new episode is still in production, this episode now includes a lot of scientific / hacking WiFi including and the interview with The Worst and Fixor of ETA.
Thanks everyone and Stay tuned!
~Douglas.
Well, it’s about that time. 5 years ago, I broke my first WEP key with one Million IV’s, a Gateway 3040gz, a Nintendo DS, and a Dlink Router in my home. To celebrate, I am displaying the video that started it all for me. The original, by Christophe Devine himself. Moskau!
Thanks for joining us on our journey, it definitely doesn’t end here!
Download High Quality SWF version HERE. 5,422,00k (Requires Flash player)
This video is re-distributable under the GNU License.
~Douglas.
As technology changes, we should keep a good eye on those technologies we love. At WeakNet Labs, we love WiFi (and especially Atheros!)! WiGig is a group of engineers that produced the first 60GHz wireless PCIe device. More and more talk is going around since the WiGig group joined up with the WiFiAlliance about triband devices that do 2.4GHz, 5GHz, and now 60GHz, and now we read that Atheros and Wilocity have “embraced” the new technology. The new, to us consumers, unlicensed 60GHz band can deliver speeds up to 7Gbps! This is about nine or ten times faster than the fastest wireless N devices of today, and competes with Wireless HD devices. Here is a cool article that includes the press release of WiGig’s device:
Engadget Story on WiGig Here is the Wikipedia page for more learning resources: Wikipedia WiGig article
~Douglas.