Wireless network attack and defense have always been popular topics. Because wireless signals can be received by anyone within a certain range (including black hats), this presents security risks for WIFI. Most configurations from router manufacturers and internet service providers (ISPs) have WPS enabled by default. In this environment, wireless networks often become a significant point of penetration testing.
By using the following 10 Wifi attack tools, we can test potential security issues within our wireless network.
1. Aircrack-ng
Aircrack is one of the mainstream tools for cracking WEP/WPA/WPA2 encryption. The Aircrack-ng suite contains tools that can be used for capturing packets and handshake verification. It can be used for brute force and dictionary attacks.
– Aircrack-ng Wireless password cracking – Aireplay-ng Traffic generation and client authentication – Airodump-ng Packet capturing – Airbase-ng Fake access point configuration
2. Reaver
Ranked second is Reaver. Reaver is another popular tool for cracking wireless networks. It is applied when the target network has WPS enabled. WPS was introduced by the Wi-Fi Alliance as a new Wi-Fi security setup standard (Wi-Fi Protected Setup) to address the complexity and difficulty of wireless network encryption authentication setup.
WPS is used to simplify Wi-Fi’s security settings and network management. Currently, it supports two modes: PIN mode and push-button (PBC) mode.
Due to variations in access points, signal strength, and PINs, using Reaver to crack wireless can take 4-10 hours.
3. Pixiewps
Pixiewps is a relatively new tool on Kali Linux, also targeting WPS vulnerabilities, using C programming language.
Function: Conducting offline WPS attacks
Principle: Direct attacks through a bug in the router’s pseudo-random number. As this tool has become very popular recently, it has reached third place in the Wifi attack tool rankings.
4. Wifite
Wifite is an automated WEP/WPA cracking tool.
Feature: It can simultaneously attack multiple networks encrypted with WEP and WPA
After the cracking results are output, the PIN and KEY will be displayed.
5. Wireshark
Wireshark is one of the most popular network protocol analysis tools. Widely used for capturing real-time packets: it conducts in-depth investigations on packets for hundreds of protocols, allowing browsing, filtering, and is applicable to multiple system platforms, such as Linux, Windows, and Mac.
6. oclHashcat
oclHashcat also made the list, although it is not specifically a Wifi cracking tool.
HashCat is split into three versions: Hashcat, oclHashcat-plus, oclHashcat-lite. They all rely on the powerful computing capabilities of GPUs for password cracking.
7. Fern Wifi Cracker
Fern Wifi Cracker is written in Python and uses the Python Qt graphical interface library. It can crack and recover WEP/WPA/WPS WIFI networks and can perform MITM man-in-the-middle attacks.
8. Wash
Wash can determine whether the target network has WPS enabled.
9. Crunch
Crunch is commonly used to generate password dictionaries, working with other tools to perform brute force attacks.
10. Macchanger
The small tool Macchanger can change the MAC address of a Linux host. When MAC address filtering is enabled in a router, you can use it to change your host’s MAC address to an allowed one (provided you know which MAC address is allowed). Using this tool to change MAC addresses can also help hide your presence.
To download the tools mentioned above, please click read the original text.
* Reference source: hackingtutorials, please indicate it is from FreeBuf hackers and geeks (FreeBuf.COM) for reprints.