Welcome to another exciting episode of our podcast. I'm Matthea, an accomplished open source intelligence analyst with a passion for uncovering valuable insights from publicly available sources. As a winner of the Operation Safe Escape CTF by Trace Labs, I have honed my skills in the collection, analysis, and dissemination of intelligence. Have you ever wondered if it's possible to track people through wifi, discover their home address, or if they've made a hotspot somewhere?
The answer is a resounding yes. It all starts with war driving, a term used to describe the act of searching for wifi networks while driving a vehicle. This practice has become increasingly popular over the years and is often used by individuals and organizations to discover open wifi access points. War driving is typically carried out using a laptop or smartphone with specialized software that can detect wireless networks.
The software is usually designed to scan wifi networks within a certain range and can provide information about the network name, signal strength, and encryption status. While some people engage in war driving as a hobby, others do it for more nefarious purposes. For example, cyber criminals may use war driving techniques to identify open wifi networks that can be exploited for illegal activities such as stealing sensitive data or launching cyber attacks.
This practice becomes extremely useful in open source intelligence as users often choose to broadcast all the networks they identify throughout the day, making them searchable on the web. Before delving into the details, let's first examine some basic terminology when it comes to wifi. Although everyone uses it, there's more to explain than just being a wireless network. Firstly, we have the network name or SSID, service set identifier, that you connect to.
Although this name doesn't have to be unique, it can sometimes reveal information about the person or company to which it belongs. Then we have the BSSID, basic service set identifier, which is the MAC address of the access point. A MAC address, media access control address, is a unique identifier used by a network device to identify itself on the underlying network.
Just as the SSID is used to identify with an end user, the MAC address or BSSID is used by hardware for things like routing in the rest of the network. And although someone who connects to a wifi hotspot usually doesn't see that address, it is of utmost importance for your connection. When we start a hotspot on our phone for other devices to use the same internet connection, we call it tethering.
When you turn on your wifi connection on your phone while you're out and about, you'll probably see pop-up examples like, Mattias iPhone or Mattias Android AP as a default. If we want to search for information on wifi networks, the most popular platform is Wiggle. It is available as both a website and a mobile application and allows users to map and analyze wireless networks worldwide. It is a community-driven platform that collects and stores data on wifi access points and cellular towers.
Users can contribute to Wiggle by using the platform to upload data on wireless networks in their area. This data includes information such as the network name, signal strength, encryption type, and geographical location. This information is then used to create a detailed map of wireless networks around the world. Wiggle offers a range of functions and tools that allow users to explore and analyze wireless networks.
For example, users can search for networks in a specific geographical location, view network statistics, and analyze network usage trends over time. One of the advantages of Wiggle is that it can be used for various purposes, including research, network analysis, and security testing. For instance, researchers can use Wiggle to study network usage patterns. While security professionals can use the platform to identify potential vulnerabilities in wireless networks.
By typing Mattias iPhone in the search bar of Wiggle, for example, we can see all the locations where the phone has been identified. It is clear, therefore, that if we know the wifi network name of a potential target, we could quickly find out where they live or their movements. Geolocation has become an essential aspect of modern-day technology. With the increasing use of location-based services, the ability to determine a user's location has become crucial.
One of the ways to determine a user's location is by analyzing the wifi networks in their vicinity. GeoWiFi is a powerful open source tool that can help you perform geolocation on wifi networks. GeoWiFi is a Python-based tool that uses public wifi data to estimate a target's location. The tool can extract information about the wifi networks in an area and place, and then analyze the data to determine the target's approximate location.
GeoWiFi uses the Wiggle database, which is one of the largest publicly available databases of wifi networks in the world. To use GeoWiFi, you need to have Python installed on your system. Once you have Python installed, you can download GeoWiFi from its GitHub repository. GeoWiFi is easy to use and comes with a user-friendly interface. You simply need to provide GeoWiFi with the name of the wifi network and it will do the rest.
One of the key features of GeoWiFi is its ability to perform geolocation on wifi networks that are not in the Wiggle database. This is done by collecting wifi signals in the target area and then using the signal strength to estimate the distance from the target. This information is then used to triangulate the target's location. GeoWiFi also has the ability to perform geolocation on hidden networks.
This is done by collecting data about the wifi signals in the target area, even if the network is not broadcasting its SSID. GeoWiFi can also perform geolocation on multiple wifi networks simultaneously, which can be helpful when trying to determine the location of a target in an area with multiple wifi networks. GeoWiFi can be used for a variety of purposes, such as cybersecurity, network analysis, and location-based marketing.
For example, GeoWiFi can be used to determine the location of a potential attacker in a cybersecurity investigation. It can also be used to analyze the coverage of wifi networks in a specific area, which can be useful for network planning. In conclusion, GeoWiFi is a powerful open-source tool that can help you perform geolocation on wifi networks. It is easy to use and comes with a user-friendly interface.
GeoWiFi can be used for a variety of purposes, from cybersecurity investigations to location-based marketing. If you are looking for a tool to help you determine the location of a target based on their wifi networks, then GeoWiFi is definitely worth checking out. Some famous examples of cases solved by wifi tracking. The first case where Weigel was instrumental in solving a crime occurred in 2014.
In this case, a hacker had infiltrated the wifi network of a small family-run restaurant in Massachusetts and used it to launch cyberattacks on various targets. The hacker used the name Jax to sign into the wifi network, but this was a fake name, and investigators had no leads. However, using Weigel, they were able to identify the physical location of the wifi network, and this led them to the restaurant.
With the help of surveillance footage from the restaurant, they were able to identify the perpetrator as a former employee who had been fired for stealing. The employee was eventually arrested and charged with the cyberattacks. The second case where Weigel was used to solve a crime involved the theft of a valuable painting. In this case, a painting by artist Jacob Lawrence was stolen from a museum in Seattle in 2018.
The museum had a wifi network, and investigators used Weigel to determine that an iPhone had connected to the network around the time of the theft. They were also able to determine the physical location of the iPhone by using Weigel's mapping feature. The iPhone was traced to a nearby hotel, and after reviewing hotel surveillance footage, investigators were able to identify a suspect. The painting was eventually recovered, and the suspect was charged with theft.
These cases illustrate the power of Weigel in identifying the physical location of wifi networks and devices connected to them. While the use of Weigel in investigations is not foolproof, it has been shown to be a valuable tool in solving crimes and identifying suspects. Thank you for tuning in to this episode of our podcast. I hope you found our discussion on wifi open source intelligence insightful and informative.
Remember, open source intelligence is a powerful tool that can provide valuable insights and intelligence from publicly available sources. If you have any questions or comments, please don't hesitate to reach out to me. And, if you enjoyed this podcast, be sure to subscribe and stay tuned for more episodes on open source intelligence and related topics. Thanks again for listening, and I look forward to bringing you more exciting content in the future.