Data exfiltration: Secret chat application using Wi-Fi covert channel

Abstract

For this speech I programmed a Chat application using Python and Scapy library that creates a covert channel using 802.11 packets, that permits data exfiltration. The usage of this chat is very simple: just connect a monitor mode Wi-Fi card that supports traffic injection capabilities, enter your alias and a secret IRC room name. Based just on this name, the Wi-Fi card sets on a specific channel, sets a destination MAC address and initialises an AES symmetric key for the encryption of this virtual room. Every user that knows this secret room name will be in the same room, being notified about the actual users in the IRC room. All the users will work also as Wi-Fi repeaters to increase the signal between nodes. It's also possible to send files or pictures to anyone. It's possible to create so many rooms as needed, so you can create a small infrastructure inside a building. Internally I am using malformed 802.11 packets that are usually silently discarded by standard Wi-Fi cards (this improves also security).

Talk

Yago Hansen

Yago F. Hansen specialises in delivery of infrastructure and network management. During the last ten years he has focused on wireless technologies, having successfully managed projects in design, implementation and auditing of

Wi-Fi wireless networks, both private and public, covering hotspots, multi-point and point-to-point-technologies, mesh and other 802.11 based technologies.

In addition to his expertise in delivery, Mr. Hansen is a recognised authority in IT security topics. He successfully managed projects related to the design of IT security embedded systems (Linux based). He has built excellent relationships at executive level across the banking, insurance, telecommunications, security and government sectors.

Mr. Hansen is a frequent keynote speaker at IT security industry conferences and forums and has published extensively. His last publication is "Python Scapy Dot11: Python programming for Wi-Fi pentesters". Hansen co-founded a public TV show about security and hacking in Spain, which stands for the fourth season. He's a known trainer for Government, Defense and Intelligence services about Wi-Fi security for many countries.