KaliTut

Kali Linux tutorial and Linux system tips

Rogue access point guide

Last Updated on by 3 Comments

How rogue access point work?
The attack using a fraudulent access point (Rogue access point) is to create a wireless network without encryption so that anyone can connect to it, they are man-in-the-middle attacks.

Rogue access point

Unlike the Evil Twin attack and most other WiFi attacks, the purpose of the fraudulent access point is not WiFi passwords. The main goal is the traffic of the user against which the mediator is attacking. For this situation, apply absolutely all methods of attack man-in the middle.

[Read more…] about Rogue access point guide

Rogue AP – fake access points

Last Updated on by 1 Comment

Most modern devices remember the name of the WiFi network to which they successfully connected at least once, and immediately connect to it if they “see” it in wireless. This feature of wireless technology is increasingly being used by attackers – they create so-called rogue AP (fake access point).

Rogue AP

Such attacks are becoming more and more large every year, taking into account the ever-increasing market for BYOD devices and the amount of critical information contained in them.

[Read more…] about Rogue AP – fake access points

mdk3 examples & Tutorial

Last Updated on by Leave a Comment

What is mdk3
mdk3 is a multifunctional program, the main purpose of which is to show the weak points of WiFi networks. The mdk3 utility can use to silence WiFi, deauthenticate clients, confuse wireless network monitors, or confuse intruders who want to attack your wireless network, as well as to perform an attack aimed at lowering the encryption algorithm from WPA to a weaker one or refusing to use encryption. Those. It is clear that the program is very versatile.

mdk3
[Read more…] about mdk3 examples & Tutorial

Wifiphisher Evil Twin Attack

Last Updated on by 3 Comments

How Wifiphisher Works
Wifiphisher uses social engineering to get a password for WiFi and websites the method is called Evil Twin Attack. You do not need a powerful hardware for a long time for bruteforce password.

wifiphisher

The principle of the tools:

  • the access point is selected, its settings are copied (name, channel, etc.)
  • on the WiFi card of the attacker, a clone (Evil Twin) of this access point is launched, which repeats the original except for one thing – you can connect to it without a password
  • users are disconnected from the original access point by deauthentication attack
  • the original access point is continually muffled. For this, the attacker needs a second wireless card.
  • when a user connects to the Evil Twin, he is asked for a WiFi password (for example, to update the firmware) under various pretexts. The password thus received is sent to the attacker.
[Read more…] about Wifiphisher Evil Twin Attack

How To Create Fake WiFi AP using Fluxion 5

Last Updated on by 4 Comments

What is Fluxion Fluxion is a security audit and research tool for social engineering. The script tries to get a password (WPA / WPA2 key) from the target WiFi access point, using social engineering ( Fake Access point).

creating a fake wifi

The advantage of this approach is that it does not require a long brute force on a powerful iron. The downside is that social engineering attacks do not always work.

[Read more…] about How To Create Fake WiFi AP using Fluxion 5