– a DHCP server working on the LAN where eth0 is connected – eth0, the wired connection linked to the network I also have a smartphone and I want a wireless connection on-the-fly.
I have a notebook connected to a LAN but no access point. I can use this connection to sniff WPA handshakes or WEP packets and try to decode passwords. When the client, that is serching for a known SSID, find my RAP named MY_NETKORK it immediatly try to connect. I Can setup an access point using the same SID the client is searching for. Locoking at the wireless packets you can see the client trying to connect to the previusly registred access point (eg. This is an hot spot directly connectet to the Company LAN. I setup, may be using a small RaspberryPi, an access point using the Company network as wired interface. In this case I can implement some kind of phishing. If someone will connects to me and start to surf I am able to redirect traffic using my DNS.
I setup a RAP and force it to use mine DNS Server. Every connections that pass through my PC are intercepted. I setup a RAP and start wireshark, ettercap or another network sniffer. I use for these operations airbase-ng command (aircrack-ng suite). When a user connects to the new hot spot created, his data are bridged, through the PC, to the wired connection and proxed to the destination (internet). The wireless card will be configured as AccessPoint (AP) and a bridge will be created to link wired and wireless connections. A Rougue Access Point (RAP) is a fake wifi connection that can be used to sniff information.īasically you have a PC (Kali Linux live in this case) with 2 interfaces: a wired one (eth0) connected to a working network and a wireless one (wlan0).
0 kommentar(er)
