WhereAmI – You Lost or Something?
Basically Windows has had a few versions of the Geo location API. Before Windows 8 you had to use a special third party provider, which was a bit crap, so most people didnt bother. With Windows 8 MS has built in capabilites to figure out where you are. For anyone dorky enough to figure out how that works, its pretty interesting reading. The API’s is using WIFI and IP tracking together with GPS stuff and 2G/3G triagulation in order to provide an as accurate position as possible.
The nice thing is, you dont even need GPS as long as you have some WIFI around you, since “the cloud” knows where those WIFI networks are. But how do they know, well when people walk about with their mobile phones that have GPS and WIFI, these devices will send the geo location to “the cloud” mapping the WIFI SSID & device info with the location. Pretty smart, a bit creepy as well. So basically all the big dragons do the same.
So back to the story, we thought we ought to try this out, so we used the new Windows 8 App’s API and with a bit of a hack we enabled them to also run in the regualar session, outside the App sandbox.
So what can you do? Well the tool squirts out latitude and longitude, as well as the actual path to the Point that you want to get to. So linking up the eventlog, task scheduler with something like our StatGen Tools you can then track your users every move into a central database and report on them. The only thing missing is the live feed from the camera. 🙂
Joking aside, we will use this data, if enabled (its off by default in the reporting) to build & map the physical network with the soft layer (IP addresses & routs and shit). This allows us to visualise where and how much data is cached in a physical location. We can also track how some laptops acts as mules, carrying data from one location to another.
The possibilites are really endless, but remember that with great powers comes great responsibilites.
The Tools takes the input of an ipv4 IP address and returns the following info:
- Gateway IP for that IP, i.e. which route
- Gateway MAC address, which tells us the make and sometimes model
- Geo location in latitude and longitude
Example 1 – Get the help… DOH!?
C:\temp>WhereAmI.exe /? WhereAmI - 2Pint Software Usage: WhereAmI.exe WhereAmI.exe
Example 2 – Query path to a Google DNS server:
C:\temp>WhereAmI.exe 184.108.40.206 WhereAmI - 2Pint Software Kicked of Location Query! Best GW Route for destination 220.127.116.11 is Route:192.168.138.1 Interface-Index: 4, Interface-MAC: F0DEF1B63E1D Your GW-MAC:04-DA-D2-84-AE-42 Waiting 3000 milliseconds for Location Data..................................... .............................................................................. Location:11.949526,57.696401 Done!
Example 3 – Use the interactive way (does not return the geo location):
C:\temp>WhereAmI.exe WhereAmI - 2Pint Software IP To Try?> 18.104.22.168 Best GW Route for destination 22.214.171.124 is Route:192.168.138.1 Interface-Index: 4, Interface-MAC: F0DEF1B63E1D Your GW-MAC:04-DA-D2-84-AE-42 IP To Try?>
Missing something? Lets us know! You know where to find us: 11.949526,57.6964 😉