Credential Harvesting Using Raspberry Pi

Tae-Hoon Kim; Ge Jin; Michael Tu; Tianyang Guan

Download Paper | Permalink

Conference: 2020 ASEE Virtual Annual Conference Content Access
Location: Virtual On line
Publication Date: June 22, 2020
Start Date: June 22, 2020
End Date: June 26, 2021
Conference Session: Instrumentation Division Technical Session 2
Tagged Division: Instrumentation
Tagged Topic: Diversity
Page Count: 13
DOI: 10.18260/1-2--34350
Permanent URL: https://peer.asee.org/34350
Download Count: 1069

Request a correction

Ge Jin, D.Sc, is currently an associate professor in the Department of Computer Information Technology and Graphics at the Purdue University Calumet. He teaches computer game development, computer graphics and animation, as well as computer information technology courses at the undergraduate and graduate levels. Prior to joining Purdue University Calumet, he was a postdoctoral research scientist at the George Washington University, Department of Computer Science. Professor Jin holds a B.S. in Computer Science from Peking University, China, and an M.S. in Computer Science from Seoul National University, South Korea. He earned his Doctor of Science degree in Computer Science with a concentration in computer graphics from the George Washington University. His research spans the fields of computer graphics, virtual reality, computer animation, medical visualization, and educational game development. He is a member of the ACM SIGGRAPH, ASEE, and International Society of Virtual Rehabilitation.

visit author page

biography

Michael Tu Purdue University Northwest

visit author page

Michael Tu, Ph.D. in Computer Science, associate professor of Computer Information Technology, Director of the Center for Cybersecurity , and the Point of Contact of the NSA/DHS Designated National Center of Academic Excellence in Cyber Defense Education at Purdue University Northwest.
Dr. Tu’s areas of expertise are information assurance, digital forensics, cybersecurity education, and cyber physics system security. His research has been supported by NSA and NSF and published over 40 peer reviewed papers in prestigious journals and peer reviewed conference proceedings. Dr. Tu has over 14 years of college teaching and research experiences in cybersecurity and digital forensics. Dr. Tu is a CISSP, Certified Ethical Hacker (CEH), & AccessData Computer Examiner (ACE).

visit author page

author page

Tianyang Guan Purdue University Northwest

Download Paper | Permalink

Abstract

As the Internet usage dramatically increases, cyber-threat also increases at the same time. Due to the growth rate of cyber-threat, cybersecurity education becomes more important than ever. In cybersecurity education, hands-on experience through the lab is crucial because students tend to learn thing better when observing how practically it’s been applied in real system. Recently, “wifiphisher” was introduced, which mounts automated phishing attack against Wi-Fi networks in order to harvest the credential information and/or infect victim with malware. Attacker first takes the man-in-the middle position and uses redirection technique to guide victim’s HTTP request to attacker’s webpage to steal victim’s credential information. Generally, virtualization technology is used in cybersecurity education due to its portability. However, wireless communication cannot be implemented through such a technology. Here, we propose to use Raspberry Pi, small and affordable computer, to develop the Wi-Fi Phishing lab to teach the mechanism of Phishing attack in free Wi-Fi network. In this paper, we introduce the security lab to teach Wi-Fi Phishing attack using low cost Raspberry Pi. In addition, we introduce the learning topics students should learn before proceeding the lab and delivery method.

Citation
Format

Kim, T., & Jin, G., & Tu, M., & Guan, T. (2020, June), Credential Harvesting Using Raspberry Pi Paper presented at 2020 ASEE Virtual Annual Conference Content Access, Virtual On line . 10.18260/1-2--34350