To take advantage of environments with guest networks, we will us the following process:
- First, we need to see what networks are likely to be guest networks. Start by running airodump-ng as follows:
root@kali:~/wireless# airodump-ng -w KaliCookbook_8.5 wlan0mon
Searching for guest networks
- Based on the results of the airodump-ng run, we can see that ESSID Kali_Guest is visible and is protected with a shared WEP key, and ESSID Kali_Guest1 is open.
- We will start with the open SSID since nearly all guest implementations use a guest portal and authenticated sessions are tracked by the MAC address of the device connecting to ...