O'Reilly logo

Kali Linux Wireless Penetration Testing Cookbook by Sean-Philip Oriyano

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Step four – forcing a reconnect

If you want to see if you can get clients to connect to the access point quicker than they would if you simply waited, you can effectively bump them off their current access point, the good twin, and get them to reconnect to your access point. To do this, we will fuse a deauthentication frame to boot everyone off a targeted access point. Once they are booted off, they will attach to our evil twin if we have positioned ourselves properly. Our next step is to bump the neighbor off his access point.

We can do this by using aireplay-ng with the deauth packet:

    aireplay-ng --deauth 0 -a 60:A4:4C:69:D2:48
  

What we have done with aireplay is send a deauth frame with the address of the Tarlogic access point. The following ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required