Book Image

Kali Linux Wireless Penetration Testing Beginner???s Guide - Third Edition

By : Cameron Buchanan, Daniel W. Dieterle, Vivek Ramachandran
Book Image

Kali Linux Wireless Penetration Testing Beginner???s Guide - Third Edition

By: Cameron Buchanan, Daniel W. Dieterle, Vivek Ramachandran

Overview of this book

As wireless networks become ubiquitous in our lives, wireless penetration testing has become a key skill in the repertoire of the professional penetration tester. This has been highlighted again recently with the discovery of the KRACK attack which enables attackers to potentially break into Wi-Fi networks encrypted with WPA2. The Kali Linux security distribution comes with a myriad of tools used for networking attacks and detecting security loopholes. Kali Linux Wireless Penetration Testing Beginner's Guide, Third Edition has been updated to Kali Linux 2017.3 with the latest methodologies, including full coverage of the KRACK attack and how to defend against it. The book presents wireless pentesting from the ground up, introducing all elements of penetration testing with each new technology. You'll learn various wireless testing methodologies by example, from the basics of wireless routing and encryption through to detailed coverage of hacking methods and attacks such as the Hirte and Caffe Latte.
Table of Contents (21 chapters)
Kali Linux Wireless Penetration Testing Beginner's Guide Third Edition
Credits
Disclaimer
About the Authors
About the Reviewer
www.PacktPub.com
Customer Feedback
Preface
Index

Time for action – cracking PEAP


Follow the given instructions to get started:

  1. We double-check the eap.conf file to ensure that PEAP is enabled:

  2. We then restart the RADIUS server with freeradius-wpe –s –X:

  3. We monitor the log file created by FreeRADIUS-WPE:

  4. Windows has native support for PEAP. Let's ensure that certificate verification has been turned off:

  5. We need to click on the Configure tab that is next to Secured password (EAP-MSCHAP v2) and tell Windows not to automatically use our Windows logon name and password:

  6. We will also have to force it to select User authentication in the Advanced Settings dialog box:

  7. Once the client connects to the access point, the client is prompted for a username and password. We use Monster as the username and abcdefghi as the password:

  8. As soon as we do this, you should be able to see the MSCHAP-v2 challenge response appear in the log file.

  9. We now use asleap to crack this using a password list file that contains the password abcdefghi, and we are able to crack the...