Project Description

WhereAmI – You Lost or Something?

Ok, so this tool came about when we introduced a new reporting feature into the BranchCache reporting 2.0. Windows have had the WhoAmI.exe for a long time, so we thought it was time to introduce the WhereAmI.exe. We wanted to start using the geo location APIs in order to put the network on a physical map. More on that later in Another blog post etc.

Basically Windows has had a few versions of the Geo location API. Before Windows 8 you had to use a special third party provider, which was a bit crap, so most people didnt bother. With Windows 8 MS has built in capabilites to figure out where you are. For anyone dorky enough to figure out how that works, its pretty interesting reading. The API’s is using WIFI and IP tracking together with GPS stuff and 2G/3G triagulation in order to provide an as accurate position as possible.

The nice thing is, you dont even need GPS as long as you have some WIFI around you, since “the cloud” knows where those WIFI networks are. But how do they know, well when people walk about with their mobile phones that have GPS and WIFI, these devices will send the geo location to “the cloud” mapping the WIFI SSID & device info with the location. Pretty smart, a bit creepy as well. So basically all the big dragons do the same.

So back to the story, we thought we ought to try this out, so we used the new Windows 8 App’s API and with a bit of a hack we enabled them to also run in the regualar session, outside the App sandbox.

So what can you do? Well the tool squirts out latitude and longitude, as well as the actual path to the Point that you want to get to. So linking up the eventlog, task scheduler with something like our StatGen Tools you can then track your users every move into a central database and report on them. The only thing missing is the live feed from the camera. 🙂

Joking aside, we will use this data, if enabled (its off by default in the reporting) to build & map the physical network with the soft layer (IP addresses & routs and shit). This allows us to visualise where and how much data is cached in a physical location. We can also track how some laptops acts as mules, carrying data from one location to another.

The possibilites are really endless, but remember that with great powers comes great responsibilites.

The Tools takes the input of an ipv4 IP address and returns the following info:

  • Gateway IP for that IP, i.e. which route
  • Gateway MAC address, which tells us the make and sometimes model
  • Geo location in latitude and longitude

Example 1 – Get the help… DOH!?

C:\temp>WhereAmI.exe /?
WhereAmI - 2Pint Software
 
Usage: WhereAmI.exe WhereAmI.exe

Example 2 – Query path to a Google DNS server:

C:\temp>WhereAmI.exe 8.8.8.8
WhereAmI - 2Pint Software
 
Kicked of Location Query!
Best GW Route for destination 8.8.8.8 is Route:192.168.138.1
Interface-Index: 4, Interface-MAC: F0DEF1B63E1D
Your GW-MAC:04-DA-D2-84-AE-42
Waiting 3000 milliseconds for Location Data.....................................
..............................................................................
Location:11.949526,57.696401
Done!

Example 3 – Use the interactive way (does not return the geo location):

C:\temp>WhereAmI.exe
WhereAmI - 2Pint Software
 
 
IP To Try?> 8.8.8.8
Best GW Route for destination 8.8.8.8 is Route:192.168.138.1
Interface-Index: 4, Interface-MAC: F0DEF1B63E1D
Your GW-MAC:04-DA-D2-84-AE-42
 
IP To Try?>

Missing something? Lets us know! You know where to find us: 11.949526,57.6964 😉

 

Get WhereAmI

Free!