Here is a classic project used to increase wireless signal strength. Cantennas focus using a waveguide very much like a magnifying glass focuses light. [Robert] made a Natural Light beer cantenna, pictured in the upper left. His approach used three beer cans, a paper towel holder, and a shower curtain rod. On the tipline, he noted a signal boost from 11Mbps to 54Mbps. This is certainly something we can hack together if our room lacks adequate signal. Read about parabolic and seeking versions after the break.
Lifehacker wrote a guide for cracking a WiFi network’s WEP password using BackTrack. BackTrack is a Linux live CD used for security testing and comes with the tools needed to break WEP. Not just any wireless card will work for this; you need one that supports packet injection. The crack works by collecting legitimate packets then replaying them several times in order to generate data. They point out that this method can be hit-or-miss, especially if there are few other users on the network, as the crack requires authenticated packets. We covered cracking WEP before, but using BackTrack should smooth out compatibility issues.
With the 4th of July around the corner, we thought it would be a good idea to give a controller wrap up and show you how to make some ignitors. Last year we covered a microcontroller based fireworks launcher. If you like the idea of a controller but don’t want to run all the wire, we have the wireless fireworks controller. Adding a little twist to the wireless scene are cell phone triggered fireworks. Maybe controllers are not your cup of tea, you could try to microwave your fireworks. After the break we show you how to make ignitors from a diode and a match.
Reader, [Andres Leon], has two adorable cats with very specific dietary needs. Instead of altering his schedule, he donned his hacking hat and designed a very solid cat food dispenser. The dispenser consists of a rotating drum with a slot in it and a PVC pipe Y-fitting to distribute the food evenly. The brains of the machine is an Arduino Deumillanove and an XBee module. The unit can be controlled by a web interface or it can run completely standalone. [Andres] ran into a problem where the drum’s resistance to turning varied based on how much food was inside. He solved this with a clever laser position indicator. A piece of plywood is lined up with the slot at the top so that whenever the slot is facing up it keeps the laser from shining on a photoresistor. The cats were afraid of the servo noise at first, but now they run to their bowls whenever they hear it.
The term ‘warwalking’ isn’t used very often, but the Ekahau HeatMapper adds a new tool to the pod bound hacker’s arsenal. The tool maps out wireless access points as well as their signal strength within a facility. A test of the HeatMapper on a map made with AutoDesk Dragonfly accurately determined the location of a router within 3 feet and helped tune the angle it needed to be at for maximum range. Ekahau made a fantastically cheesy promotional video for their product, which is viewable after the jump. The program is free of charge, but unfortunately only runs on windows, so mac and *nix users are out of luck, though it might run under wine.
Remote-Exploit.org is releasing Keykeriki, a wireless keyboard sniffer. The project is both open source hardware and software. you can download the files on their site. Right now you can’t get a pre made board, but they plan on releasing one soon. The system can be upgraded with “backpacks” or add on modules. One of these is going to be an LCD that displays the keystrokes of the keyboard you are sniffing. Another is supposed to serve as an interface to your iPhone. Right now it has the ability to decode Microsoft wireless keyboards, but the Logitech pieces should be added soon.
[Pete] has put together a fairly simple writeup on building a wireless USB tether for your DSLR. He’s basically using a pair of USB wireless adapters and a battery pack. In his original version, he did some slight modification to the dock that powers the USB dongle, adding his own battery pack too. He notes that this whole project can be done without the effort he put into it, at a little more expense. The only improvement we think would be nice would be a better way to package it to keep it out of the way while you shoot.
We reported last week that D-Link was adding captchas to their routers to prevent automated login by malware. Unsurprisingly, it doesn’t work all time. The team from SourceSec grabbed the new firmware and began poking at it. They found that certain pages don’t require the authentication to be passed for access. One of these is WPS activation. WPS lets you do push button WPA configuration. Once activated, any nearby client can request the WPA key using a tool like WPSpy. Only user level credentials are needed to pull this off, so changing just the admin password won’t prevent it.
[Matthew] sent us his group’s final project, where they built a nice GPS logging system. Not only can it simply log the GPS coordinates on a predetermined interval, it can also be triggered to make an entry by a wireless device. In this example, they use a camera. This allows them to then upload all the GPS information and pictures to places like Google Earth.
They are using an ATmega644, with an LCD, SD card, and GPS unit. They had to do a little hacking on their camera to add the wireless transmitter, which triggers the logger. You can see not only the cost break down and source code for the project, but also a map with lots of geotagged photos. This is the kind of thing we can almost see as a standard item in the future.
This weather monitor can track pressure, temperature, and humidity and last several months on a pack of AA batteries. It has a PIC18f452 to control all the bits, as well as some fancy power management to get the most out of the batteries as possible. The screen displays the highest and lowest temperatures of the last 42 hours as well as having options to display all other sensor input, updated every minute or so. You can get the full schematic and parts list on the project site.
GNUCITIZEN has posted information on linksys wireless IP camera hacking. It turns out that some models send the administrator user name and password to the computer when the setup wizard requests a connection. In theory, someone could send the request and harvest your passwords wirelessly. This seems like a pretty careless oversight. We would think that linksys will probably remedy this before too long.
[Trax] sent in his writeup on this RF modem with built in 250mW amplifier. The original power of the RF transceiver was around 10mW, his final results after testing were nearly 250mW. He was able to to easily transmit data over 1000 meters using his test setup. He states that he was actually able to achieve this without an antenna on the receiving side. That’s pretty impressive performance. It’s also worth noting that he soldered all of the components in place using a home clothing iron and some soldering paste. That must have been fairly tedious.
When traveling with a laptop, we often find that the list of peripherals that we have to attach can get pretty long. Especially if it is an older laptop without wireless built in. [Dawning] has taken steps to consolidate some of his peripherals(registration required)by cramming a USB hub and a wireless card into his mouse.
He started by dismantling a USB hub. After placing the board in the mouse to see how it fit, he realized that he was going to have to reduce the size. To do this, he removed the USB slots themselves. This forces him to wire things directly to the board, but saves a ton of space. Next, he took the guts from a USB wireless adapter and wired them up. The decorative LED in the mouse was then moved to the wireless card. This way he could see light flicker with his network traffic. At this point, that’s all he’s added, though there’s still plenty of space for other items. He notes that he’ll probably add some storage or a CF reader. The only problem he has encountered is that his mouse tends to get warm during use. What peripherals would you put in there?
Update: [Dawning] let us know that he didn’t actually remove the LED from its original location. He connected a wire from the wireless adapter that causes the LED to short when traffic is going through. Also, there’s a video which you can now see after the break.
[Travis Goodspeed] posted a preview of what he’s working on for this Summer’s conferences. Last weekend he gave a quick demo of sniffing AES128 keys on Zigbee hardware at SOURCE Boston. The CC2420 radio module is used in many Zigbee/802.15.4 sensor networks and the keys have to be transferred over an SPI bus to the module. [Travis] used two syringe probes to monitor the clock line and the data on a TelosB mote, which uses the CC2420. Now that he has the capture, he’s planning on creating a script to automate finding the key.
