Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3932 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. Ethical Hacking and Countermeasures Version 6 Module LVI Hacking Global Positioning System Ethical Hacking and Countermeasures v6 Module LVI: Hacking Global Positioning System Exam 312-50 Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3933 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Module Objective • Global Positioning System(GPS) • Secret Startup commands • Firmware Hacking • Waypoints • GPS Tools • Security Tools This module will familiarize you with: Module Objective This module will familiarize you with:  Global Positioning Systems (GPS)  Secret Startup Commands  Firmware Hacking  Waypoints  GPS Tools  Security Tools Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3934 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Module Flow Global Positioning System(GPS ) Secret Startup commands Firmware Hacking Security Tools GPS Tools Waypoints Module Flow Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3935 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Global Positioning System (GPS) The Global Positioning System (GPS) is a satellite- based navigation system that provides reliable positioning, navigation, and timing services GPS shows the exact position on earth GPS is a constellation of 24 satellites revolving 11,000 nautical miles above earth surface A GPS receiver can detect signals transmitted by GPS satellite  Global Positioning System Source: http://www.gps.gov/ The Global Positioning System (GPS) is a satellite-based navigation system that provides reliable positioning, navigation, and timing services. GPS shows an exact position on the earth. GPS is a constellation of 24 satellites revolving 11,000 nautical miles above the earth’s surface. A GPS receiver can detect signals transmitted by the GPS satellite. The GPS is made up of three parts: satellites orbiting the earth; control and monitoring stations on earth; and the GPS receivers owned by users. GPS satellites broadcast signals from space that are picked up and identified by the GPS receivers. Each GPS receiver then provides three- dimensional location (latitude, longitude, and altitude) plus the time. GPS provides accurate location and time information for an unlimited number of people in all weather, day and night, anywhere in the world. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3936 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Terminologies • DGPS is a method of improving the accuracy of your receiver by adding a local reference station to expand the information available from the satellites Differential GPS (DGPS) • WAAS is intended to enable aircraft to rely on GPS for all phases of flight, including precision approaches to any airport within its coverage area Wide Area Augmentation System (WAAS) • It transmits signals containing information on reliability and accuracy of the positioning signals which are sent by GPS and Global Orbiting Navigation Satellite system(GLONASS) European Geostationary Navigation Overlay Service (EGNOS) EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Terminologies (cont’d) • Corrected data are transmitted from a local source, typically an airport or another location where accurate positioning is needed • These correction data are typically useful for only about a thirty to fifty kilometer radius around the transmitter Local Area Augmentation System (LAAS) • The effects of the combined errors of four variables (latitude, longitude, altitude, and time) on the accuracy of a three- dimensional fix Geometric Dilution of Precision (GDOP) • The ratio of incoming signal strength to the amount of interfering noise as measured in decibels on a logarithmic scale Signal to Noise Ratio (SNR) Terminologies Differential GPS (DGPS) Receiver’s accuracy can be improved by using DGPS. It adds a local reference station to expand the information available from the satellite. For receiving DGPS signals, a GPS receiver can be modified to design DGPS signals as “DGPS ready.” DGPS can increase the accuracy of the positions that are derived from the GPS receivers. Wide Area Augmentation System (WAAS) WAAS is an air navigation aid that was developed by the Federal Aviation Administration to expand GPS, in turn improving accuracy, integrity, and availability. WAAS enables aircraft to depend on GPS for all phases of flights, which includes precision approaches to any airport coming under the coverage area. European Geostationary Navigation Overlay Service (EGNOS) EGNOS enhances the dual military satellite navigation system, operating the US GPS and the Russian GLONASS system. It makes them compatible for critical applications such as flying aircraft or navigation of ships through channels. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3937 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. Local Area Augmentation System (LAAS) Source: http://www.environmental-studies.de/GPS/GPS_Glossary/gps-glossary-l-m/7.html Local Area Augmentation System is similar to WAAS, in that similar correction data are used. But in this case, the correction data are transmitted from a local source, typically at an airport or another location where accurate positioning is needed. These correction data are typically useful for only about a thirty to fifty kilometer radius around the transmitter. Geometric Dilution of Precision (GDOP) GDOP is the outcome of the combination of errors of four variables—latitude, longitude, altitude, and time—on the accuracy of the three dimensional fix. GPS devices define the position of an object by using “3-d multilateration,” a process of figuring out where many spheres intersect. Signal to Noise Ratio (SNR) SNR is the ratio of the incoming signal strength along with interfering noise calculated in decibels on a logarithmic scale. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3938 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited GPS Devices Manufacturers Garmin 3S Navigation Alpine Navtech Magellan Silva Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3939 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Gpsd-GPS Service Daemon gpsd is a service daemon that monitors one or more GPSs attached to a host computer through serial or USB ports It makes all data on the location/course/velocity of the sensors, available to be queried on TCP port 2947 of the host computer With gpsd, multiple GPS client applications (such as navigational and wardriving software) can share access to GPSs without contention or loss of data  Gpsd-GPS Service Daemon Source: http://gpsd.berlios.de/ Gpsd is a service daemon for monitoring one or more GPSs attached to a host computer through serial or USB ports. It makes all data on the location, course, and velocity of the sensors, available to be queried on TCP port 2947 of the host computer. With Gpsd, multiple GPS client applications (such as navigational and wardriving software) can share access to GPSs without contention or loss of data. Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3940 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Sharing Waypoints • Storing in External storage devices • Distribute them on paper • Make it available on Internet There are variety of ways to store waypoints: • www.waypoint.org • www.swopnet.com/waypoints • www.travelbygps.com • www.pickatrail.com Websites where waypoints can be stored: A waypoint is a spot on the surface of the Earth as defined by coordinates that are inputted into the GPS and stored, usually along with an icon, a descriptive name, and some text EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Wardriving Wardriving is an activity by which WiFi networks, broadcasting signals are detected With addition of GPS, pinpoint location of the discovered hotspot can be stored Information regarding street names, building numbers, network spots, and logs by location are stored automatically Ethical Hacking and Countermeasures v6 Exam 312-50 Certified Ethical Hacker Hacking Global Positioning System Module LVI Page | 3941 Ethical Hacking and Countermeasures v6 Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited. EC-Council Copyright © by EC-Council All Rights Reserved. Reproduction is Strictly Prohibited Areas of Concern Use of precision weapons in which jamming can degrade the accuracy of weapon, results in: • Unnecessarily increased weapons expenditures • An increase in collateral damage Interruption of GPS can deny warfighters with a common time and position coordinate, leading to: • Delays in finding targets • Increased exposure to threats • Missed engagements "Warfighter" is a term used by the United States Department of Defense to refer to any member of the US armed forces or a member of any armed forces under the US flag  Areas of Concern Nowadays, the military system depends on GPS, creating a potential vulnerability to the warfighters. The US and allied military forces are relying more on GPS even though warfighters are not totally aware of GPSs vulnerabilities and its potential impact on the mission. There are some areas that compromise the use of precision weapons in which jamming can degrade the accuracy of the weapon, resulting in:  Increased expenditures on weapons unnecessarily  An increase in collateral damage Interruption of GPS can deny warfighters a common time and position coordinate, leading to:  Delays in finding targets  Increased exposure to threats  Missed engagements “Warfighter” is a term used by the US Department of Defense to refer to any member of the US armed forces or any member of any armed force under the US flag.