π Wi-Fi Attacks
Attacks List
- DoS
- Deauthentication/disassociation β Disconnect everyone (or a specific ESSID/Client)
- Random fake APs β Hide nets, possible crash scanners
- Overload AP β Try to kill the AP (usually not very useful)
- WIDS β Play with the IDS
- TKIP, EAPOL β Some specific attacks to DoS some APs Cracking
- Crack WEP (several tools and methods)
- WPA-PSK
- WPS pin βBrute-Forceβ
- WPA PMKID bruteforce
- [DoS +] WPA handshake capture + Cracking
- WPA-MGT
- Username capture
- Bruteforce Credentials
- Evil Twin (with or without DoS)
- Open Evil Twin [+ DoS] β Useful to capture captive portal creds and/or perform LAN attacks
- WPA-PSK Evil Twin β Useful to network attacks if you know the password
- WPA-MGT β Useful to capture company credentials
- KARMA, MANA, Loud MANA, Known beacon
- Open β Useful to capture captive portal creds and/or perform LAN attacks
- WPA β Useful to capture WPA handshakes
Scan Wi-Fis
# scans for wifis
sudo iwlist wlan0 scanning
Airgeddon