Someone is hacking into my network


Recommended Posts

Lately I was seeing very slow internet speed at night.. I have about 4 devices on my network connected to tomato router. So, I logged into my router to see an extra device connected to the network. So, I enabled web monitoring for that devices ip in the router and the router is logging apple.com; huffingtonpost etc. from the ip.

Now; I can change the password (WPA-2 PSK security). But is it possible to screw with the guy a bit before I do so? ( like sending messages/ rebooting the computer etc)

Link to comment
Share on other sites

I wouldn't "screw" with him as IMO, that's not cool. Also, check do a full computer scan for any viruses or malware that might affect your computer and internet.

Link to comment
Share on other sites

Lately I was seeing very slow internet speed at night.. I have about 4 devices on my network connected to tomato router. So, I logged into my router to see an extra device connected to the network. So, I enabled web monitoring for that devices ip in the router and the router is logging apple.com; huffingtonpost etc. from the ip.

Now; I can change the password (WPA-2 PSK security). But is it possible to screw with the guy a bit before I do so? ( like sending messages/ rebooting the computer etc)

man in the middle attack!!!! Google it and find youtube videos about tools that you can use.

I have done that on my network for test, but i would advice changing the password and let it go....

Link to comment
Share on other sites

I wouldn't "screw" with him as IMO, that's not cool. Also, check do a full computer scan for any viruses or malware that might affect your computer and internet.

Cracking the passkeys on a secured wifi network isn't cool, either. Screwing with the guy is fair game.

Link to comment
Share on other sites

I'm pretty sure anything you could do is illegal and certainly against the rules here on Neowin. Change the password, bro. That is if you had one at all to begin with.

Link to comment
Share on other sites

be the bigger person and just change your password. two wrongs don't make a right. How did they get your password? do you have their machine name? maybe they're dumb and gave it a name like "john's pc"

Link to comment
Share on other sites

I wouldn't "screw" with him as IMO, that's not cool. Also, check do a full computer scan for any viruses or malware that might affect your computer and internet.

F that i say mess with him any way you can the intruder is some place he should not be time to pay for it

Link to comment
Share on other sites

send his IP and whatever other information you can get to your ISP, if they hacked your passworded network then that is illegal and should be reported (chances are if they're willing to hack your password once they'll do it again if you just change it)

Link to comment
Share on other sites

send his IP and whatever other information you can get to your ISP, if they hacked your passworded network then that is illegal and should be reported (chances are if they're willing to hack your password once they'll do it again if you just change it)

I did copy the MAC address ( that's all I could see from the router). MAC's can be spoofed so that's useless. I also switched the network to N only (all my wireless devices are N compatible)

  • Like 1
Link to comment
Share on other sites

send his IP and whatever other information you can get to your ISP, if they hacked your passworded network then that is illegal and should be reported (chances are if they're willing to hack your password once they'll do it again if you just change it)

if it was a wifi hack the persons IP will be the victims IP I think thats generally the point lol... ALSO if it is a wifi... you know the person cannot be to far away...but assume he can be atleast a mile away I would look outside for any suspicious cars and people

I did copy the MAC address ( that's all I could see from the router). MAC's can be spoofed so that's useless. I also switched the network to N only (all my wireless devices are N compatible)

if he is a pro he will have N im not a pro and my war driver is N and your correct MACs can be spoofed ... What I would do is either set up a tunnelling server in your DMZ which requires a strong password and user name OR you can set MAC filtering (just to slow down), WPA2 PSK. and limit number of connectible devices one of my routers only allows 2 connections and pre assign IP address and limit the ip range :)

Link to comment
Share on other sites

Simple and effective method....

Mac filter with all your portable devices that way should he try to use it.... It won't let him/her on your network and be done with it-- save you the hassle should they try and brute force.

Then that person would think you just changed the password and it would take them a while to figure out that you added a new hoop to get on your network.

.http://netsecurity.a...fimacfilter.htm

For explanation using a tomato to filter...

http://www.overclock...rt54gl-w-tomato

This method also would avoid their spoofing... since it would only let your devices on with your new correct password...

Link to comment
Share on other sites

If you were already using WPA-2 how the hell he\she crack your key? It takes brute-force or rainbow table to crack it and most don't go through the trouble.

Cracking WPA2 is easy as 1,2,3

Link to comment
Share on other sites

Cracking WPA2 is easy as 1,2,3

Aircrack ng or something like that comes to mind with this... but then, WPA2 is already vulnerable? I didn't knew that... what about the ones that have open source firmwares like dd-wrt or openwrt?

Link to comment
Share on other sites

Aircrack ng or something like that comes to mind with this... but then, WPA2 is already vulnerable? I didn't knew that... what about the ones that have open source firmwares like dd-wrt or openwrt?

Any WPA2 is easily crackable. There are many tutorials on the net.

Link to comment
Share on other sites

send his IP and whatever other information you can get to your ISP, if they hacked your passworded network then that is illegal and should be reported (chances are if they're willing to hack your password once they'll do it again if you just change it)

FAIL If he's on the guys network, he's going to have the same IP as this guy. derp. That, or what is he going to say, "hey the guys IP is 192.168.0.102"?

Turn DHCP off, MAC Address filtering, WPA2, SSID disable (do not broadcast) and make it a long password. Guaranteed to secure you from any but the most persistant hackers.

Any WPA2 is easily crackable. There are many tutorials on the net.

Yeah if you've got the rainbow tables and the horsepower to do it

Link to comment
Share on other sites

Don't worry about disabling the SSID broadcast or MAC filtering or such, the only thing they do is make it harder to connect to the network legitimately.

Just use WPA2-PSK with AES encryption and a good strong password, if they can still get through after that then you either know the person and have given them the key, or they are getting into your router via some other means (You can't access the WebUI from the WAN side?, etc.)

Link to comment
Share on other sites

Cracking WPA2 is easy as 1,2,3

Yeah if the password is P@ssW0rd1 and non unique ssid. Unique ssid, not in say the top 1000 will take rainbow tables out of it.

Sorry but your not accessing a correctly secured WPA or WPA2 network -- the only attack to again access is bruteforce.. And if the password is secure you just not getting in.

Link to comment
Share on other sites

Set the router to only allow the MAC addresses of those you specify. Best security IMO

How many freaking times on the whole of the Internet does it have to proven that MAC lock down IS NOT SECURITY.

Link to comment
Share on other sites

On my router I can just say to not accept new devices, as well as WPA2 secured, which is what I do. It's not very often I need a new device on it, and if I do I can enable it from the router. Simples :)

Link to comment
Share on other sites

change the password on your router, disable wan remote access, change the ssid and passkey, hide the ssid, enable mac filtration, change the lan ip address, disable dhcp,

these should make it a lot harder for them to access it :)

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.