RE: Wireless Pen Test
- From: "Rui Pereira (WCG)" <wavefront1@xxxxxxx>
- Date: Fri, 28 Nov 2008 07:50:33 -0800
Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program. WPA and WPA2
with PSK's can be cracked the way you describe. BUT if you are using WPA
Enterprize type implementation (with an authentication server like RADIUS),
there are no PSK's to crack so your method will not work. Even the recent
attack on WPA with TKIP will not work against wireless networks configured
this way (and using AES instead of TKIP provides even better protection).
Thank You
Rui Pereira,B.Sc.(Hons),CIPS ISP,CISSP,CISA,CWNA,CPTS/CPTE
Principal Consultant
WaveFront Consulting Group
wavefront1@xxxxxxx | www.wavefrontcg.com | 1 604 961 0701
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of m0rebel
Sent: November 26, 2008 10:01 PM
To: anshuman sharma
Cc: pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Wireless Pen Test
WPA and WPA2 both can be cracked with aircrack-ng. They both have the
same weakness, and in terms of using aircrack, they're exactly the
same thing. You need to sniff traffic on the WPA or WPA2 network until
you capture the 4-way handshake when someone is connecting. If someone
is already connected, you can speed this up by kicking them off the
network with a deauth attack and wait for them to reconnect, if you
don't mind an active attack. Once you have the handshake, you can
crack it by doing a dictionary attack (aircrack-ng -w dictionary.txt
dump.cap).
If your client is using either WPA or WPA2 and a really long,
complicated, hard-to-guess password that's not in anyone's dictionary
files (say, 40 random characters), then I'd say you can give them
reasonable assurance that it's secure from the outside.
m0rebel
On Wed, Nov 26, 2008 at 10:37 AM, anshuman sharma <anshuman251@xxxxxxxxx>
wrote:
Hi All,
Is there any tool available to break WAP2 encryption (I searched a lot
but was not able to find any). I know using Aircrack (Airodump and
Aireplay), WEP and WPA key can be breaked. But if the encyption is
WPA2 can we give a reasonable assurance to the client that the Wifi
network is secure from outside.
Thanks and Regards
Anshuman
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
No virus found in this incoming message.
Checked by AVG - http://www.avg.com
Version: 8.0.176 / Virus Database: 270.9.10/1815 - Release Date: 11/27/2008
9:02 AM
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now
www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
- Follow-Ups:
- RE: Wireless Pen Test
- From: Cedric Blancher
- RE: Wireless Pen Test
- References:
- Wireless Pen Test
- From: anshuman sharma
- Re: Wireless Pen Test
- From: m0rebel
- Wireless Pen Test
- Prev by Date: Re: Wireless Pen Test
- Next by Date: Re: Wireless Pen Test
- Previous by thread: Re: Wireless Pen Test
- Next by thread: RE: Wireless Pen Test
- Index(es):
Relevant Pages
|
