Being traced for online crime...

lapses · #1 (**permalink**) 03-22-2009, 12:53 PM

Was reading the topic on "IP Addresses, Tracing, and Why You're An Imbecile" and I noticed alot of people waffling stuff out of them that just didnt make much sense. So I decided to write a small tutorial. Ive "dumbed it down" as much as I can and took out as much jargon as possible. Also I know Im new, so please dont flame too much for posting a tut/guide.

Ok lets go over a few terms first for the not so techy readers

IP Address: every time you log onto a network (internet included), the network will give you an IP address. SIDE NOTE: In some cases your computer is programmed to use one specific address and it will not accept anything else. An IP address is just like a phone number. No two address can be the same.

I want you to imagine your office. You decide to call in sick one day so you call the boss. You dial the main number (if you are in Ireland it would look something similar to 042-9354753) and this take's you through to reception. Once you get to recpetion you ask for the boss and he is on line 3.

Now if I picked up my telephone and dialled 3 I would not get through to the boss. I have to call his external number (042-9354753) and then get put through to his internal number (3).

IP address have the same thing. An external address and an internal address. So imagine you have your router at home, and five laptops.

Your internet provider gives you your external IP address (remember the phone number 042-9354753) and then your router gives each of your laptops an interal address. SIDE NOTE: You can usually recognise an internal IP address if it starts with 192.168.x.x (x representing any number under 255) - for example 192.168.1.2 is an internal ip address.

MAC Address: this is pretty much the same as the unique number carved into a gun. Every number is unique and a gun can be traced by this numnber. However the neat thing with a laptop/computer is that you can change your MAC address to whatever you want. Once you learn how to do this there are some very basic attacks you can do on other computers (but thats a different tutorial
altogether).

So how do you change your MAC address anyway: if your on windows there is a great peice of software here

Technitium MAC Address Changer v5 (FREEWARE) its free, easy to use and supports vista and server 2008. As a computer geek I know what its like to make software, so I would ask you to consider donating to them.

WEP/WPA: If you dont understand what a router is, or what a wireless network is then its time for you to pay google a little visit.

But just to go over it very quickly. You call up Digiweb and tell them you want to sign up with them for internet. They send 2 men to your house a day or so later who put an ariel on your roof and then take a wire into your home that plugs into a little box.

They then take a wire from this box and plug it into your laptop/computer and voila you are online. As soon as they leave, you head to PCWORLD and buy a Linksys Router, go back home, program it, then take that wire the digiweb men plugged into your laptop and plug into the router instead.

The router then takes the internet signal that travels by wire and converts into a radio signal. Now you have wireless internet. PLEASE BE ADVISED: if this is your first time learning about routers, you really should
spend 20 minutes on google, otherwise the rest of this tutorial may seem too complex.

OK. Now we have our router broadcasting the signal for us to get wireless internet all around the house. The problem is, it doesnt just stop at your house. It probably goes into your neighbours house also. Since you dont want your neighbour getting free internet you put a password on it. This password is either a WEP or WPA. Now, without this password nobody is going to get onto your internet connection.

However WEP passwords are fairly easy to crack, even if you look on youtube you will see people who know shit-all about computers breaking WEP passwords in a few minutes.

On the other hand WPA passwords are bit more complex and will require more time to crack. You are guaranteed to crack it, but it just might not happen in your lifetime. SIDE NOTE: Some people dont bother putting passwords on their routers which means anybody can log on and
get free internet. This is what we will be focusing on.

Cantenna: So you understand perfectly well how a router broadcasts signals, well your laptop needs a reciever doesnt it...? If it hasnt got one it wont be able to get online now will it. And you also know how far your router broadcasts.... you did research this didnt you...? To put it in perspective some people will put a router in one end of their house and not get a signal at all from the other end of the house. However in my case (since I live in such a small house) my neighbours on both sides can pick up my wireless and lucky for them its password free. But anyway. So getting back to this reciever. What we are going to do is build a new reciever. The one in your laptop is fine, but it aint going to pick up signals 2 or 3 miles down the road now is it.

YouTube - Cantenna - Here is some eye candy
Antenna on the Cheap (er, Chip) - Here is some good guidlines on how to build this thing.

The Operation

Now lots of litte freaks love to run around waffling on about "linux" and "backtrack" and "aircrack" and "kismet" and what not.

Dont mind any of this stuff. At least not yet anyway. We are looking for open routers. Routers with no passwords. The reason for this is that if the router is open and its in a housing estate you can be guaranteed your not the only "hacker" using it. This makes somebody elses job a whole lot harder.

Now obviously enough your not going to look through your emails or research your target from this point. If you are actually doing a bit of hacking then (not only should this guide be completely elementary to you) you should do all your research from maybe a router with WPA. Its so difficult to spot somebody sizing up your network - well if you do it right anyway they shouldnt spot it.

Whilst sizing up a network for hacking you are likely to slip up a little bit and leave a big ugly finger pointing to you. So always do the sizing up and the hack in two different places.

Lets face it, some people want this anonymousity because they have something really bad to say, or they want to post something which can never fall back in their laps or they want to download something which can never be traced to them. They're not hackers. For you people, just use your cantenna and find an open router (one without a password) and do it from there. You dont have to worry about using more than one router. But again, dont go checking your emails after you post your 'kill obama petition'

Will I get caught..?

I think I saw someone say in "ip addresses tracing and why youre an imbecile" that even connecting to a an open router is dangerous because they will trace your IP. How do you figure that...? Its the router that gave you the IP address and it has probably since giving that same address to 10 other machines. All it can trace is your MAC address. And even then that would be flukey.

An internal IP address cant be traced. When the shades investigate and start tracing they can only trace the external IP back to the router. After they come to the router they are kinda stuck. Usually the first protocol is to take all the laptops and computers that are connected to
the the network and investigate the actual machines.

Upon failure to find anything they investigate further, would anyone in that house have the know-how to do something so smart?

Would it be easy for somebody to hack in and do it from that persons connection? Did the person have any visitors that might have done it on their own laptops? etc.. Now since its an open connection the list of suspects is endless, neighbours, people visiting the neighbour, someone parked outside in a car. Usually the next move is to check video cameras, but your probably sitting in a car park a mile and a half away so thats not going to do them much good.

But what about this MAC address...? The funny thing is most home routers dont actually keep logs of who ordered what. And the ISP

only knows the request came from the router, your ISP cant tell how many laptops are behind that router, let alone which one

requested www.freechildporn.com at 17.55 last tuesday.

So why is everybody fussing over this MAC address...?? I really dont know to be honest. Most routers dont keep logs, but you will be changing your MAC anyway so even if it does keep logs its in vain anyway.

And secondly nobody keeps records of who owns which MAC address. Its similar to a fingerprint in this sense, only if you get fingerprinted will you get caught - but to get fingerprinted you would have to be a suspect anyway. They cant just fingerprint random people. Same with the MAC they cant just go round checking random people for their MAC address, and since a MAC address can be changed - even if they do get a match it still doesnt prove anything.

lapses · #2 (**permalink**) 03-22-2009, 12:53 PM

People talk about throwing away the laptop after you done the job so it cant be traced. This is completely wrong. All you would have to is buy a new pcmcia card for about 40 quid. The MAC address is on the PCMCIA card. SIDE NOTE: If you read the links you would know that the cantenna hooks into a pcmcia card. And then if you are ultra paranoid just take out your harddrive and run some powerfull magnets across it before breaking it up. Then visit PCWORLD grab a new harddrive for about 60 quid.

I see lots of people saying to buy cheap laptops, second-hand laptops etc use them and throw them away after the job is done.

Using cheap ass equipment is just wrong. Your half-way through a hack and the next thing your laptop crashes...? WTF. Buy a

really really good laptop. And if your really paranoid, every time you do a job replace your hardrive and pcmcia card (or whatever network card you used - just dont use the integrated one)

Also I would just like to say. Even if the shades do get your laptop, and do prove your laptop was the one used for whatever.

That doesnt automagically mean it was you who was sitting behind the laptop when the crime happened. For that reason your hacking

laptop should log directly into an admin account with no password required. Did I also mention your hacking laptop should only be

used for one thing: hacking. So now, its quite plausible to say that you left it at work by accident that weekend. Though if they

find the cantenna and pcmcia card, now thats a bit more damning. Though you could still talk your way out of it.

What about TOR, proxy servers, vpns etc

What about them. The only proxy server I trust is my own (and that
kinda defeats the purpose). Also, a VPN, why would you even consider it..? Squat251 said something which I think is worth quoting here.

"i hope anyone who follows that advice is caught and gets thier balls cut from them (or appropriate anatomical part) for being that stupid".

BTW: This is the first time I have ever wrote a tutorial/guide so any input would be appreciated.

paradox08 · #3 (**permalink**) 03-22-2009, 05:55 PM

Quote:

Originally Posted by lapses

What about TOR, proxy servers, vpns etc

What about them. The only proxy server I trust is my own (and that
kinda defeats the purpose). Also, a VPN, why would you even consider it..? Squat251 said something which I think is worth quoting here.

"i hope anyone who follows that advice is caught and gets thier balls cut from them (or appropriate anatomical part) for being that stupid".

BTW: This is the first time I have ever wrote a tutorial/guide so any input would be appreciated.

First off, Great first tutorial bro! very well written, concise, not overly technical that those of us who are clueless re: this stuff couldn't comprehend. Definately raises one's awareness concerning trying to stay anonymous while roaming the internet. I wish I could write a tut. this well!
I look forward to seeing your next tutorial whatever the subject may be. Using TOR/JonDonym etc. in addition to this would provide an additional layer of security would it not? Or is it simply overkill? Your thoughts?

sincerely,

paradox08

lapses · #4 (**permalink**) 03-23-2009, 12:08 AM

Yeah TOR would provide extra security, but that security is only from the internet/crime-scene to the router you "hacked"... but we dont really care about that since its not our router in the first place... and once your using a cantenna and sitting so far away its pretty much impossible for the shades to trace you.

Like I said when they get there they find that in the house is just a typical family. They check out their computers anyway but find it wasnt them. But the ISP says it came from that connection. So the shades look at the router and find that the router doesnt keep logs of anything.

So what do they do next..? The shades subpeona every request that came from that connection and hope the attacker logged into an email account or slipped up somewhere. But since you were smart you only used this router for the attack (and since its an open router I bet you a pint that at least 10 other people logged into their email accounts from this connection- now they are suspects). After alot of running around the shades realise they have nothing.... at this stage they realise they have no "digital forensics" left to work with and will start using good old fashioned techniques... "Do you remember seeing anybody outside with a laptop on the 22nd of this month, - oh you do, what colour car was he driving"..

Thanks for the comments paradox08, I'm on holidays for a day or two, so if there is a specific tutorial you want let me and I'll see what I can do..