hack small and large companies physically

[Str0ng]

Hello everyone
recently I was thinking, there are companies that are really safe, difficult to hack although not impossible, it just occurred to me, there are ways to physically hack them, such as leaving USB sticks at the entrance of the company (a bit old) , go with a wifi antenna and capture the handshake of the wifi network to then crack it and enter your network, then it would be quite easy, it could also be, for example, using an evil twin with a captive portal for someone from the company to insert with supplies the wifi network password, once inside the network the rest should be quite easy, search for vulnerable devices, default password, sniffing, capture ntlm hashes using Responder, etc.

Does anyone have any other ideas that don't include a drone?

 

[Str0ng]

You want to hack a company? You got a target in mine?

mine ?

 

[vagabond]

I sometimes have these thoughts too, and I even have a special device that I bought a few years ago, but I still haven't tested it.

U don't need a drone, you just need to meet a cleaning lady or a cleaning boy (nevermind =)) in this company so that she/he likes you. And ask her/him to connect this device to admin computer while cleaning.

After that just smtimes download the data waiting for sensetive info. When U got it, ask the cleaner to take the device away avoid evidence.

 

[Lowbanger]

I sometimes have these thoughts too, and I even have a special device that I bought a few years ago, but I still haven't tested it.

U don't need a drone, you just need to meet a cleaning lady or a cleaning boy (nevermind =)) in this company so that she/he likes you. And ask her/him to connect this device to admin computer while cleaning.

After that just smtimes download the data waiting for sensetive info. When U got it, ask the cleaner to take the device away avoid evidence.

что такое устройство должно делать?

 

[Lowbanger]

Hello everyone
recently I was thinking, there are companies that are really safe, difficult to hack although not impossible, it just occurred to me, there are ways to physically hack them, such as leaving USB sticks at the entrance of the company (a bit old) , go with a wifi antenna and capture the handshake of the wifi network to then crack it and enter your network, then it would be quite easy, it could also be, for example, using an evil twin with a captive portal for someone from the company to insert with supplies the wifi network password, once inside the network the rest should be quite easy, search for vulnerable devices, default password, sniffing, capture ntlm hashes using Responder, etc.

Does anyone have any other ideas that don't include a drone?

для физического воздействия что то типа такого нужно будет если есть инсайдер:

The Perfect Stealthy Payload

https://github.com/hak5/usbrubberducky-payloads/blob/master/payloads/library/general/The-Perfect-Stealthy-Payload/payload.txt

payloadhub.com

O.MG Plug

The O.MG Plug's ease of use and speed make it the perfect DuckyScript™ tool. Full control over wifi. Just open your web browser. Mobile and desktop supported. Documentation is built in, so it’s always there when you need it. Payloads compile, transfer, and execute automatically with a single...

shop.hak5.org

https://www.keelog.com/usb-keylogger/

https://www.keelog.com/airdrive-keylogger/

WiFi Pineapple

The industry standard WiFi pentest platform has evolved. Equip your red team with the WiFi Pineapple® Mark VII. Newly refined. Enterprise ready.

shop.hak5.org

(https://fruitywifi.com/index_eng.htm)

либо сделать rpi с удаленным доступом и нужным софтом для работы с окружением

 

[swwwheart]

mine ?

I think he meant "mind"

 

[Str0ng]

It would be a good idea to try to enter the Wi-Fi network, and then do the classic post-exp work, such as scanning devices on the network, looking for vulnerabilities, default credentials, extracting their databases, for example if it were a bank. ?

I've seen something called mousejack

 

[molotov477]

It would be a good idea to try to enter the Wi-Fi network, and then do the classic post-exp work, such as scanning devices on the network, looking for vulnerabilities, default credentials, extracting their databases, for example if it were a bank. ?

I've seen something called mousejack

Scanning via wifi network can be very difficult and with a lot of false positives, at least it has been in my case if the wifi router is connected to a firewall on the other end or if firewall rules are properly implemented, plus if I am to understand correctly, you cannot perform certain vlan hopping attacks on a wireless network like wifi as compared to a wired network.
Although devices like Pineapple wifi might help trying out other types of network attacks.

 

[voldemort]

physically is good but in that case you will also be vulnerable of getting caught in action.

 

[gulak]

physically is good but in that case you will also be vulnerable of getting caught in action.

or wors they will see you on camira

 

[Seer]

Most of the cameras are not monitored all the time, they are there in case something happens and they want to see what/who. You can always bypass them in many ways - hoodie, blind spot and so on.

If you are looking to get into physical security I would recommend you playing with lockpicks and different bypass methods and learn about access control, for example card cloning. A simple tailgating can do the job for initial access

 

[Str0ng]

The idea is to go with a vehicle and try to enter their Wi-Fi network to start, it can also be done from a hotel or something

 

[molotov477]

The idea is to go with a vehicle and try to enter their Wi-Fi network to start, it can also be done from a hotel or something

Ah, the good old days of wardriving, when WEP was the only security standing between access to wireless networks.

 

[gulak]

when WEP was the only security standing between access to wireless networks.

old days yes and you can Bypass the windows defender is easy than drink water LOL

 

[Callthebank]

Anyone know how to hack the wifi instead from outside the building without going in? I need to have their computer show a cloned/modified version of a website when they request it

 

[Str0ng]

Anyone know how to hack the wifi instead from outside the building without going in? I need to have their computer show a cloned/modified version of a website when they request it

First you need access to their network, so you should try to capture the handshake and then crack it, or use an evil twin with a captive portal, and if it's long distance you'll definitely need an antenna.

There is a software that I recommend if you don't know much about wifi hacking, it's called wifite and it's very good.

 

[Callthebank]

First you need access to their network, so you should try to capture the handshake and then crack it, or use an evil twin with a captive portal, and if it's long distance you'll definitely need an antenna.

There is a software that I recommend if you don't know much about wifi hacking, it's called wifite and it's very good.

Thanks for the reply, I have some questions if you don't mind answering them...

Can this be done easily? Using wifite and an external interface to capture the handshake? Isn't this encrypted? What equipment is needed, just a device running kali linux and a wifi interface that supports monitor mode? I can be in close proximity: 10-20m distance.

Do I first need to do a de-authentication attack to disconnect a device in order to create an environment where I can capture a handshake?

Once I am connected to the router I will need admin access to the control panel to manipulate the DNS so I can route to my DNS server in order to do DNS spoofing correct?

Thanks for the recommendation I have heard of wifite and will do some more research into it

 

[Str0ng]

Thanks for the reply, I have some questions if you don't mind answering them...

Can this be done easily? Using wifite and an external interface to capture the handshake? Isn't this encrypted? What equipment is needed, just a device running kali linux and a wifi interface that supports monitor mode? I can be in close proximity: 10-20m distance.

Do I first need to do a de-authentication attack to disconnect a device in order to create an environment where I can capture a handshake?

Once I am connected to the router I will need admin access to the control panel to manipulate the DNS so I can route to my DNS server in order to do DNS spoofing correct?

Thanks for the recommendation I have heard of wifite and will do some more research into it

The distance depends on the power and range of your wifi antenna, such as satellite dishes for example, and yes with wifite you can easily capture the handshake, once you capture the handshake you will have to crack it if wifite does not do it previously, after that you will be able to access the wifi network.

There are other methods too, like the WPS pin

 

[vasiliyan]

nice, this good thread, thanks

 

[DarkToken]

The idea is to go with a vehicle and try to enter their Wi-Fi network to start, it can also be done from a hotel or something

man this option can't work , did you want to bruteforce the wifi password or what ?