In this review we will look at how using Yandex.Metro you can spy on people, determining their location.

Russian search engine Yandex, apparently, is not going to close your spy bug for this, we will try to actively use it. This bug allows us to determine the physical location of the user. Using the well-known XSS or CSRF vulnerabilities in the firmware of home routers, we can determine the MAC address of the router user (aka BSSID Wi-Fi network). If you have direct access to the user's PC, it is enough to view the ARP cache on the PC with the command "arp-a". Usually the first line in the cache is the MAC address of the gateway by default, which is the desired BSSID. After receiving the BSSID can be pasted into a query that refers Yandex.Metro. Output mypolicy data that you can see in the screenshot.

The response packet contains the coordinates of the requested wi-fi access point, carefully collected and stored by Yandex. You can drive them in Google Maps and find the right house for you. Coordinates are not always accurate, but as a starting point for searches amiss.

Code to use in the terminal with CURL command:

curl -i -s -k -X 'POST' \
-H 'User-Agent: Dalvik/2.1.0 (Linux; U; Android 5.0.1; Nexus 5 Build/LRX22C)' -H 'Content-Type: application/x-www-form-urlencoded' \
'http://mobile.maps.yandex.net/cellid_location/?clid=1866854&lac=-1&cellid=-1&operatorid=null&countrycode=null&signalstrength=-1&wifinetworks=000000000000:-65&app=ymetro'