WIRELESS HACKING WITH KALI LINUX
LEARN FAST HOW TO HACK ANY WIRELESS NETWORKS
PENETRATION TESTING IMPLEMENTATION GUIDE
BY
HUGO HOFFMAN
All rights reserved.
All rights reserved.
No part of this book may be reproduced in any form or by any electronic, print or mechanical means, including information storage and retrieval systems, without permission in writing from the publisher.
Copyright 2020
Disclaimer
Professionals should be consulted as needed before undertaking any of the action endorsed herein. Under no circumstances will any legal responsibility or blame be held against the publisher for any reparation, damages, or monetary loss due to the information herein, either directly or indirectly. This declaration is deemed fair and valid by both the American Bar Association and the Committee of Publishers Association and is legally binding throughout the United States. There are no scenarios in which the publisher or the original author of this work can be in any fashion deemed liable for any hardship or damages that may befall the reader or anyone else after undertaking information described herein. The information in the following pages is intended only for informational purposes and should thus be thought of as universal. As befitting its nature, it is presented without assurance regarding its continued validity or interim quality. Trademarks that are mentioned are done without written consent and can in no way be considered an endorsement from the trademark holder.
Intended Audience
This book is designed to anyone who wishes to become an IT Professional, specifically in the field of Information Security. This book is written in everyday English, and no technical background is necessary. If you are a beginner to Informational Technology or Information Security, the contents in this book will provide a high level overview of network and wireless security. If you are preparing to become an IT Professional, such as an Ethical Hacker, IT Security Analyst, IT Security Engineer, Network Analyst, Network Engineer, or a Cybersecurity Specialist, yet still in doubt and want to know about network security, you will find this book extremely useful. You will learn key concepts and methodologies revolving around network Security, as well as key Technologies you should be mindful. If you are truly interested in becoming an Cybersecurity Specialist, this book is for you. Assuming you are preparing to become an Information Security Professional, this book will certainly provide great details that will benefit you as you enter this industry.
Introduction
Wireless penetration testing has become a key skill in the range of the professional penetration testers. This book will provide you information and key industry insights that will help you stress testing your wireless, which will help you better configure, manage, and operate a network over the air. Its not necessary to have prior wireless knowledge, but if have some working experience with either computing or networking devices such as network switches, routers or protocols that are commonly used, it will be advantageous. First, we will take a look at what kind of software tools you should have and where to get them, which we are also going to cover in this book. Next, in terms of hardware, we will look at Wireless Adapters & Wireless Cards for Penetration Testing that you should consider having. After that, we are going to cover the Installation of Vitrual Box & Kali Linux. Next, we are going to implement Wireless Password Attacks, Dictionary Attacks, Passive Reconnaissance, MITM Attacks, Rogue Access Point creation, De-authentication Attacks, Evil Twin Attacks, and DoS Attacks using various tools such as Kali Linux, MKD3 or Ettercap. We will then start decrypting traffic with Wireshark and take a look at frames and packets we capture, so we can understand how to apply proper countermeasures to protect wireless traffic. Instead of hacking Wireless without understanding the underlying technology, to help you become a better Pen Tester, we will be looking at key Technologies such as Ad Hoc Networks, and how to Secure them. After that, we will be looking at Physical Security and Honeypot Access Points. Then once we summarize wireless Attacks, we will begin with Basic Encryption Terminologies and Wireless Encryption options such as WEP Vulnerabilities, TKIP Basics, and defining CCMP & AES. After that, we will begin looking at Wireless Authentication processes, such as WEP Authentication, 802.11i Authentication, 4-Way Handshake, and other Wireless Authentication Methods. Lastly, we will look at additional solutions for Wireless protection such as Fast Roaming Process, Message Integrity & Data Protection, Data Tampering, MIC Code and Packet Spoofing Countermeasures. Once you ready, lets get started!
Introduction to Wireless Threats
In the following chapters, we are going to discuss wireless network security threats and countermeasures. First, we're going to discuss the top wireless security threats. So for example what kind of threats you can face once you're at a coffee shop or an airport. We're not just going to talk about threats, but we're also going to talk about the different mechanisms that you can counteract that threat with.
Many people dont think that these places can be a dangerous environment when connecting to unknown wireless networks, but we're going to talk about the technical aspects of how you can defend against the common attacks.
One of the top threats you can come across is that someone else can get the password that you're using to access your company account, or maybe the password that you're using to do your online banking.
Then we will talk about wireless eavesdropping. This is also important because your traffic is going over the air, so anybody can listen to it, capture that traffic, or worse, modify it while in transit. Lastly, a hacker can set up an ad hoc network with the hope that you'll connect to it so he can try attack into your machine and steal your confidential information.
To understand security mechanisms that are put in place to protect your wireless network, it's valuable that you understand the types of threats that your wireless network can incur. Therefore, we're going to talk about the threats when you're outside of your companys office.
There are hundreds of threats out there, but I will focus on the key threats that people talk about in the industry, and also share with you the diversity of the types of attacks you can have when you're outside of the network.
In particular, when we are talking about BYOD strategies, we are talking about personal devices that people will use for personal use in and out of the office, as well as business use in and out of the office. Once we have covered those, we will talk about wireless network security threats and countermeasures both at home and in business or enterprise environment. The goal is not to show you all the possible security threats, but to take some of the top threats that people talk about, and look the diversity of the types of threats.
If you understand the scope and extensiveness of the types of threats that you could have while in the enterprise environment, it puts you in a much better place then you start thinking about the mechanisms that you need to put in place to overcome those threats. After that, we will discuss Wi-Fi specific mechanisms that are defined in the Wi-Fi standards and exist in Wi-Fi products.
Then we will specifically look at those Wi-Fi security mechanisms and we will start with encryption, and what encryptions mechanisms do have available to protect your data from being eavesdropped over the air. We will also look at basic cryptography, as well as different Wi-Fi options looking at WEP and why it's vulnerable.
