Penetration Testing mailing list archives
RE: Wireless Pen Test
From: "Rui Pereira (WCG)" <wavefront1 () shaw ca>
Date: Fri, 28 Nov 2008 07:50:33 -0800
Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program. WPA and WPA2 with PSK's can be cracked the way you describe. BUT if you are using WPA Enterprize type implementation (with an authentication server like RADIUS), there are no PSK's to crack so your method will not work. Even the recent attack on WPA with TKIP will not work against wireless networks configured this way (and using AES instead of TKIP provides even better protection). Thank You Rui Pereira,B.Sc.(Hons),CIPS ISP,CISSP,CISA,CWNA,CPTS/CPTE Principal Consultant WaveFront Consulting Group wavefront1 () shaw ca | www.wavefrontcg.com | 1 604 961 0701 -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of m0rebel Sent: November 26, 2008 10:01 PM To: anshuman sharma Cc: pen-test () securityfocus com Subject: Re: Wireless Pen Test WPA and WPA2 both can be cracked with aircrack-ng. They both have the same weakness, and in terms of using aircrack, they're exactly the same thing. You need to sniff traffic on the WPA or WPA2 network until you capture the 4-way handshake when someone is connecting. If someone is already connected, you can speed this up by kicking them off the network with a deauth attack and wait for them to reconnect, if you don't mind an active attack. Once you have the handshake, you can crack it by doing a dictionary attack (aircrack-ng -w dictionary.txt dump.cap). If your client is using either WPA or WPA2 and a really long, complicated, hard-to-guess password that's not in anyone's dictionary files (say, 40 random characters), then I'd say you can give them reasonable assurance that it's secure from the outside. m0rebel On Wed, Nov 26, 2008 at 10:37 AM, anshuman sharma <anshuman251 () gmail com> wrote:
Hi All, Is there any tool available to break WAP2 encryption (I searched a lot but was not able to find any). I know using Aircrack (Airodump and Aireplay), WEP and WPA key can be breaked. But if the encyption is WPA2 can we give a reasonable assurance to the client that the Wifi network is secure from outside. Thanks and Regards Anshuman ------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------ No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.176 / Virus Database: 270.9.10/1815 - Release Date: 11/27/2008 9:02 AM ------------------------------------------------------------------------ This list is sponsored by: Cenzic Security Trends Report from Cenzic Stay Ahead of the Hacker Curve! Get the latest Q2 2008 Trends Report now www.cenzic.com/landing/trends-report ------------------------------------------------------------------------
Current thread:
- Wireless Pen Test anshuman sharma (Nov 26)
- Re: Wireless Pen Test Cedric Blancher (Nov 28)
- Re: Wireless Pen Test Leandro Machado (Nov 28)
- RE: Wireless Pen Test Harit, Saurabh (IE10) (Nov 28)
- Re: Wireless Pen Test m0rebel (Nov 28)
- RE: Wireless Pen Test Rui Pereira (WCG) (Nov 28)
- RE: Wireless Pen Test Cedric Blancher (Nov 28)
- Re: Wireless Pen Test Paul Melson (Nov 28)
- RE: Wireless Pen Test Rui Pereira (WCG) (Nov 28)
- Re: Wireless Pen Test Samuel Korpi (Nov 28)
- Re: Wireless Pen Test Joshua Wright (Nov 28)
- Message not available
- Re: Wireless Pen Test anshuman sharma (Nov 28)
- Re: Wireless Pen Test Kevin Horvath (Nov 28)
- Re: Wireless Pen Test Kevin Horvath (Nov 30)
- Re: Wireless Pen Test anshuman sharma (Nov 28)
- <Possible follow-ups>
- Wireless Pen Test christopher . riley (Nov 28)