Wireless Exploitation

Wireless Exploitation

Part One: Pass the Hash

Operating Systems Vulnerable to Hashing

Windows operating systems are vulnerable to different attacks, such as hashing attacks. Pass the Hash attacks are more common on Windows operating systems because the OS uses single sign-on authentication on the NT LAN Manager. When a user creates a password in Windows, it is hashed and stored in the local authority subsystems in the security accounts manager folder. In this attack, the hacker copies the hashed-out authentication details and uses them to log onto the operating system. Due to how the Windows credential manager is set up when a user logs into a Windows server, their credentials are essentially hashed out, left on the server, and can be accessed by skilled attackers. Other operating systems, such as Linux-based, are more secure from this attack but can still be penetrated using the spell. This makes it very important to increase security features on all operating systems and change the password often (He et al., 2021).

The Hashing Process

Hashing protects vital information, such as passwords, from malicious users by replacing the actual letters or symbols of the essential communication with other characters or letters. This process is achieved using hashing algorithms, making converting hashed information to its original form easier. Some operating systems, such as Windows, also use the hashing technique to secure passwords before saving them. Operating systems must have a copy of passwords that will be used to log into the system to compare them with what the user inputs for verification purposes. Hashing the password adds a new layer of security. Apart from operating systems, hashing can also be used to encrypt information, shorten data in large databases, and secure data to be transmitted over the internet or another public network (Kishore, Chakradhar & Narayana, 2019).

The Role of Hashing in Modern Computers

Hashing has several purposes in modern computing, such as storing passwords for authentication. Software and modern operating systems hold login credentials in hashed text to reduce the chances of being hacked or the credentials falling into the wrong hands. If an attacker gains access to hashed text from the organization, they still have to decrypt the credentials before using them; this affords the company enough time to replace all the stolen credentials with new ones. Hashing can also be used in modern databases to reduce the time taken to run operations on data tables and reduce the storage space used by the database. Hashed text is usually shorter than normal, hence the storage space improvement, especially for large datasets. Computer administrators can also use hashing as an encryption method to protect documents and files in computers that other users can access.

Mitigating the Pass the Hash Vulnerability

One way computer users can avoid the pass-the-hash attack is by only allowing trusted logins from offline users on their sensitive servers and workstations. But if it is a requirement to log in over the internet, the computer systems should use two-factor authentication at a minimum. Still, it is recommended to use multi-factor authentication. The organization should also invest in network monitoring devices and hardware to trace an attack before damage occurs. Penetration testing is also very important in securing an organization’s cyber security systems. Ethical hackers can perform attacks that hackers are most likely to achieve and ensure their systems if they discover a vulnerability in the system. Organizations can also install hardware and software firewalls to prevent attackers from accessing sensitive information such as hashed passwords or documents. Employees should also be trained on good practices on the internet to avoid social engineering attacks.

Part Two: Wireless Vulnerability

The Purpose of Wireless Adapters Hashing

Wireless adapters are one of the main targets for hackers, especially in public networks, since they can eavesdrop or gain access to other computers connected to the adapter. Most wireless adapters support wireless adapter hashing, but it is not in the default setting. Wireless adapter hashing is vital as it offers an extra layer of security to users connected to the adapter. Open wireless adapters or those that display the password are easily hacked into, exposing all the users connected to the adapter and, consequently, the organizations they work for. Wireless adapter hashing is important since before an attacker can access a secure wireless connection, they will have to conduct cumbersome or complex attacks such as brute-forcing or using aircraft in Kali Linux. Wireless adapter hashing also reduces the number of users accessing a particular wireless network, increasing the speed of the wireless connection and the chances of unintentional information leakage.

The Best Wireless Adapters to Use Hashing

Wireless adapters are key in cyber security since they connect network devices and the organization’s internal network. Some of the best wireless adapters that support hashing as a security feature include blueMe HD Black, TP-Link WR-840N Tenda N300, and the TL-WN828N wireless adapter. These modern adapters support hashing to store user credentials for authentication. Most attackers on a wireless network target the wireless adapter since it is the weakest link in the organization’s security. It is also at the wireless adapter that the attacker can gain other users’ information by launching a man-in-the-middle attack and listening in on other users’ credentials that they can use to access the organization’s network. As a result, wireless adapters that do not support hashing are a huge security risk for any organization using them. Therefore, it is recommended that organizations use the aforementioned wireless adapters (Salim & Rajesh, 2020).

Bypassing MAC Filtering and Tools Used

Wireless MAC address filtering only allows computers with registered MAC addresses access to a particular network; these devices are permitted, while those not authorized are blocked. Every computer has a unique MAC address. Theoretically, only devices allowed to connect to a particular wireless network with MAC address filtering can connect to the network. This security feature effectively reduces the chances of unauthorized access to private networks unless by very advanced attackers or human error in the cyber security management department. Tools used for MAC address filtering include the MAC Packet Filter and the SPC58EC Ethernet, which support MAC address filtering. However, since it must be allowed and then spoof the MAC address, wireless MAC address filtering is ineffective because hackers can map out the network and copy any MAC address connected to it (Salim & Rajesh, 2020).

The MAC Packet filter prevents unwanted access to the established network within an organizational setting. This tool protects an organization’s network by developing a list of denied and permitted devices shared with the MAC address. The packet filter can also be configured only to enable devices on the allowlist to access the network while the rest are excluded from accessing the network (Kishore et al., 2019). Therefore, allowlists have been proven to guarantee greater security than the denied list, which intelligent computer hackers can easily surpass.

In the second tool, SPC58EC Ethernet, MAC filtering bypass is initiated by introducing filter registers. The registers are categorized into four broad groups, namely groups 0, 1, 2, and 3. Group 0 uses the record for filtering and receiving packets inserted into the MAC address (Kishore et al., 2019). Group 1 is the most versatile as it supports a perfect match on the MAC DA field of the UNICAST frames. Finally, groups 2 and 3 are used for excellent filtering by setting AE to 1.

Wireless Exploits Hashing

One of the simplest ways to access a restricted wireless network is by trying the default passwords. Most wireless adapters and routers have a similar default password. Therefore, if an attacker knows the model of the adapter being used, they can gain access to the network without any struggle if the password is not changed. Another method of bypassing wireless network security is by simply gaining physical access to the router and then pressing the reset button; this way, the default username and password can be used. Wireless attacks such as WPA2 Krack attacks can be performed to gain private information being passed over the wireless network. Krack (Key Reinstallation Attack) works as a man-in-the-middle attack where the attacker can listen in on the communication between the devices or manipulate information from one source before it reaches its destination (Akram, Saeed & Died, 2018).

References

Akram, Z., Saeed, M. A., & Daud, M. (2018, March). Real-time exploitation of security mechanisms of residential WLAN access points. In 2018 International Conference on Computing, Mathematics and Engineering Technologies (iCoMET) (pp. 1-5). IEEE.

He, R., Ai, B., Wang, G., Yang, M., Huang, C., & Zhong, Z. (2021). Wireless channel sparsity: Measurement, analysis, and exploitation in estimation. IEEE Wireless Communications, 28(4), 113-119.

Kishore, P., Chakradhar, P., & Narayana, D. V. S. (2019). Design Analysis of Path Interference in Wireless Sensor Networks. International Journal for Innovative Engineering & Management Research, 8(05).

Salim, M. R. P., & Rajesh, R. 2020, A Framework for Integrating the Distributed Hash Table (DHT) with an Enhanced Bloom’s Filter in MANET.

ORDER A PLAGIARISM-FREE PAPER HERE

We’ll write everything from scratch

---

Part 1: Pass the Hash
Instructions
For Part 1 of the Assessment, you will research the pass-the-hash vulnerability.
Your paper must provide the following:
1) Explained which operating systems are vulnerable to hashing in at least 150 words.
2) Explained hashing in a minimum of 150 words.
3) Explain the role hashing plays in modern computers in a minimum of 150 words.
4) Explained how to mitigate the pass-the-hash vulnerability in a minimum of 150 words.

Part 2: Wireless Vulnerability
Instructions
For Part 2 of the Assessment, you will research wireless vulnerabilities.
Your paper must provide the following:
5) Discussed the purpose of wireless adapters hashing in at least 150 words.
6) Explained the best wireless adapters, hashing in at least 150 words.
7) Explained bypassing MAC filtering and documented the tools’ hashing in at least 150 words.
8) Identified and summarized wireless exploits hashing in at least 150 words.