Book description
Master wireless testing techniques to survey and attack wireless networks with Kali Linux
In Detail
As wireless networks become ubiquitous in our lives, wireless penetration testing has become a key skill in the repertoire of the professional penetration tester. The Kali Linux security distribution comes with a myriad of tools used for networking attacks and detecting security loopholes.
Kali Linux Wireless Penetration Testing Beginner's Guide presents wireless pentesting from the ground up, introducing all elements of penetration testing with each new technology. Learn various wireless testing methodologies by example, from the basics of wireless routing and encryption through to detailed coverage of hacking methods and attacks such as the Hirte and Caffe Latte.
What You Will Learn
Create a wireless lab for your experiments
Sniff out wireless packets and hidden networks
Capture and crack WPA-2 keys
Discover hidden SSIDs
Explore the ins and outs of wireless technologies
Sniff probe requests and track users through SSID history
Attack radius authentication systems
Sniff wireless traffic and collect interesting data
Decrypt encrypted traffic with stolen keys
Table of contents
-
Kali Linux Wireless Penetration Testing Beginner's Guide
- Table of Contents
- Kali Linux Wireless Penetration Testing Beginner's Guide
- Credits
- About the Authors
- About the Reviewer
- www.PacktPub.com
- Disclaimer
- Preface
-
1. Wireless Lab Setup
- Hardware requirements
- Software requirements
- Installing Kali
- Time for action – installing Kali
- Setting up the access point
- Time for action – configuring the access point
- Setting up the wireless card
- Time for action – configuring your wireless card
- Connecting to the access point
- Time for action – configuring your wireless card
- Summary
-
2. WLAN and its Inherent Insecurities
- Revisiting WLAN frames
- Time for action – creating a monitor mode interface
- Time for action – sniffing wireless packets
- Time for action – viewing management, control, and data frames
- Time for action – sniffing data packets for our network
- Time for action – packet injection
- Important note on WLAN sniffing and injection
- Time for action – experimenting with your adapter
- The role of regulatory domains in wireless
- Time for action – experimenting with your adapter
- Summary
- 3. Bypassing WLAN Authentication
-
4. WLAN Encryption Flaws
- WLAN encryption
- WEP encryption
- Time for action – cracking WEP
- WPA/WPA2
- Time for action – cracking WPA-PSK weak passphrases
- Speeding up WPA/WPA2 PSK cracking
- Time for action – speeding up the cracking process
- Decrypting WEP and WPA packets
- Time for action – decrypting WEP and WPA packets
- Connecting to WEP and WPA networks
- Time for action – connecting to a WEP network
- Time for action – connecting to a WPA network
- Summary
-
5. Attacks on the WLAN Infrastructure
- Default accounts and credentials on the access point
- Time for action – cracking default accounts on the access points
- Denial of service attacks
- Time for action – deauthentication DoS attacks
- Evil twin and access point MAC spoofing
- Time for action – evil twins and MAC spoofing
- A rogue access point
- Time for action – cracking WEP
- Summary
-
6. Attacking the Client
- Honeypot and Mis-Association attacks
- Time for action – orchestrating a Mis-Association attack
- The Caffe Latte attack
- Time for action – conducting a Caffe Latte attack
- Deauthentication and disassociation attacks
- Time for action – deauthenticating the client
- The Hirte attack
- Time for action – cracking WEP with the Hirte attack
- AP-less WPA-Personal cracking
- Time for action – AP-less WPA cracking
- Summary
-
7. Advanced WLAN Attacks
- A man-in-the-middle attack
- Time for action – man-in-the-middle attack
- Wireless Eavesdropping using MITM
- Time for action – Wireless Eavesdropping
- Session hijacking over wireless
- Time for action – session hijacking over wireless
- Finding security configurations on the client
- Time for action – deauthentication attacks on the client
- Summary
- 8. Attacking WPA-Enterprise and RADIUS
- 9. WLAN Penetration Testing Methodology
- 10. WPS and Probes
-
A. Pop Quiz Answers
- Chapter 1, Wireless Lab Setup
- Chapter 2, WLAN and its Inherent Insecurities
- Chapter 3, Bypassing WLAN Authentication
- Chapter 4, WLAN Encryption Flaws
- Chapter 5, Attacks on the WLAN Infrastructure
- Chapter 6, Attacking the Client
- Chapter 7, Advanced WLAN Attacks
- Chapter 8, Attacking WPA-Enterprise and RADIUS
- Index
Product information
- Title: Kali Linux Wireless Penetration Testing : Beginner's Guide
- Author(s):
- Release date: March 2015
- Publisher(s): Packt Publishing
- ISBN: 9781783280414
You might also like
book
Kali Linux Wireless Penetration Testing Essentials
Plan and execute penetration tests on wireless networks with the Kali Linux distribution In Detail Kali …
book
Kali Linux Wireless Penetration Testing Cookbook
Over 60 powerful recipes to scan, exploit, and crack wireless networks for ethical purposes About This …
book
Kali Linux Wireless Penetration Testing Beginner's Guide - Third Edition
Kali Linux Wireless Penetration Testing Beginner's Guide, Third Edition presents wireless pentesting from the ground up, …
book
Kali Linux Web Penetration Testing Cookbook
Over 80 recipes on how to identify, exploit, and test web application security with Kali Linux …