My wifi router's been hacked - can I trace the culprit?

**davehuge** · 02-27-2009, 06:54 PM

Hi all, I was (stupidly) using WEP security on my wireless router. I'm pretty sure someone was using my internet connection.

I'm now using WPA but I would like to try and find out which of my neighbours had hacked my router, is this possible?

Thanks, Dave.

**digitalfriction** · 02-27-2009, 07:04 PM

Hi Davehuge,

the best way imho, would be to temporarily return your wifi to WEP security, with the same SSID and WEP key, then use your routers 'connected clients' option to see which MAC address is connecting, any MAC address that is not owned by yourself is your intruder (be aware that the intruder may have set up a fake mac address using macchanger). You could then provide this information to your friendly local police officer, or you could use BT yourself on a portable device, as you move around you should see the signal strengths change, you may (I havent done this, so not 100% sure) then be able to have a rough guess where the client (intruder) is.

However, please only provide this information to the police or officials in your area, do not act by yourself.

**Barry** · 02-27-2009, 07:44 PM

Originally Posted by digitalfriction

Hi Davehuge,

the best way imho, would be to temporarily return your wifi to WEP security, with the same SSID and WEP key, then use your routers 'connected clients' option to see which MAC address is connecting, any MAC address that is not owned by yourself is your intruder (be aware that the intruder may have set up a fake mac address using macchanger). You could then provide this information to your friendly local police officer, or you could use BT yourself on a portable device, as you move around you should see the signal strengths change, you may (I havent done this, so not 100% sure) then be able to have a rough guess where the client (intruder) is.

However, please only provide this information to the police or officials in your area, do not act by yourself.

I'd just leave it alone and mark that up to a life lesson. Though you could change the ssid to "Stay the **** off my wifi" for a few days.

**digitalfriction** · 02-27-2009, 07:49 PM

Originally Posted by Barry

you could change the ssid to "Stay the **** off my wifi" for a few days.

Scrub my previous post, this sounds much more fun !

**Shavx** · 02-27-2009, 08:02 PM

Yea, this is a pointless stupid chase which would only result in possibly breaking some laws.

**dustout** · 02-28-2009, 07:59 AM

tracing the guy would be pretty hard, probably not worth the effort but i guess if you really wanted i believe there is a way to sniff mac addresses from that you could sort of triangulate where it is (assuming the mac thing gives a signal strength at least)

**Shatter** · 02-28-2009, 08:39 AM

Here's a neat trick you could pull off: http://www.ex-parrot.com/~pete/upside-down-ternet.html

**Barry** · 02-28-2009, 02:31 PM

I suppose if you have the mac of the guy, you could run kismet for a few days then look at the logs. You'll see which access points that mac has associated to. Though most likely he's hopping on all the lesser protected wifi to download kiddy pr0n or something.

**davehuge** · 03-01-2009, 11:50 PM

Many thanks to everyone for the info, especially to xCPPx - I love the upside down web pages!

**godcronos** · 03-02-2009, 06:52 PM

Well, if security on your wireless router is similar to this , you deserve it!

Use WPA and a long complex password! Problem solved!

BackTrack Linux - Penetration Testing Distribution

Thread: My wifi router's been hacked - can I trace the culprit?

Thread Tools

Search Thread

Display

My wifi router's been hacked - can I trace the culprit?

Thanks...

Re:

Posting Permissions