Rating: 5 out of 5 stars
5/5
Ebook265 pages2 hours
Kali Linux Wireless Penetration Testing Essentials
Rating: 5 out of 5 stars
5/5
()
About this ebook
Kali Linux is the most popular distribution dedicated to penetration testing that includes a set of free, open source tools.This book introduces you to wireless penetration testing and describes how to conduct its various phases. After showing you how to install Kali Linux on your laptop, you will verify the requirements of the wireless adapter and configure it. Next, the book covers the wireless LAN reconnaissance phase, explains the WEP and WPA/WPA2 security protocols and demonstrates practical attacks against them using the tools provided in Kali Linux, Aircrack-ng in particular. You will then discover the advanced and latest attacks targeting access points and wireless clients and learn how to create a professionally written and effective report.
Related to Kali Linux Wireless Penetration Testing Essentials
Related ebooks
Metasploit Bootcamp Mastering Kali Linux for Advanced Penetration Testing Rating: 4 out of 5 stars4/5Mastering Kali Linux for Advanced Penetration Testing - Second Edition Rating: 0 out of 5 stars0 ratingsKali Linux Network Scanning Cookbook - Second Edition Rating: 0 out of 5 stars0 ratingsMastering Kali Linux Wireless Pentesting Rating: 3 out of 5 stars3/5Learn Kali Linux 2019: Perform powerful penetration testing using Kali Linux, Metasploit, Nessus, Nmap, and Wireshark Rating: 0 out of 5 stars0 ratingsMastering Kali Linux for Web Penetration Testing Rating: 4 out of 5 stars4/5Wireshark Network Security Rating: 3 out of 5 stars3/5Penetration Testing with Raspberry Pi - Second Edition Rating: 5 out of 5 stars5/5Building Virtual Pentesting Labs for Advanced Penetration Testing Rating: 0 out of 5 stars0 ratingsHacking with Kali: Practical Penetration Testing Techniques Rating: 4 out of 5 stars4/5Nmap in the Enterprise: Your Guide to Network Scanning Rating: 0 out of 5 stars0 ratingsNmap Essentials Rating: 4 out of 5 stars4/5Python Penetration Testing Essentials Rating: 5 out of 5 stars5/5Penetration Testing Bootcamp Rating: 5 out of 5 stars5/5Coding for Penetration Testers: Building Better Tools Rating: 0 out of 5 stars0 ratingsPenetration Testing with Raspberry Pi Rating: 5 out of 5 stars5/5Kali Linux CTF Blueprints Rating: 0 out of 5 stars0 ratingsMastering Wireshark Rating: 2 out of 5 stars2/5Building Virtual Pentesting Labs for Advanced Penetration Testing - Second Edition Rating: 0 out of 5 stars0 ratingsPenetration Testing with the Bash shell Rating: 0 out of 5 stars0 ratingsApplied Network Security Rating: 0 out of 5 stars0 ratingsPenetration Testing with BackBox Rating: 0 out of 5 stars0 ratingsMastering Malware Analysis: The complete malware analyst's guide to combating malicious software, APT, cybercrime, and IoT attacks Rating: 0 out of 5 stars0 ratingsHands-On Network Forensics: Investigate network attacks and find evidence using common network forensic tools Rating: 0 out of 5 stars0 ratingsLearning Penetration Testing with Python Rating: 0 out of 5 stars0 ratingsNmap: Network Exploration and Security Auditing Cookbook - Second Edition Rating: 0 out of 5 stars0 ratings
Networking For You
Network+ Study Guide & Practice Exams Rating: 4 out of 5 stars4/5CompTIA Network+ Certification Guide (Exam N10-008): Unleash your full potential as a Network Administrator (English Edition) Rating: 0 out of 5 stars0 ratingsThe Compete Ccna 200-301 Study Guide: Network Engineering Edition Rating: 5 out of 5 stars5/5Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5CompTIA Network+ Certification Study Guide: Exam N10-004: Exam N10-004 2E Rating: 4 out of 5 stars4/5Programming Arduino: Getting Started with Sketches Rating: 4 out of 5 stars4/5Concise and Simple Guide to IP Subnets Rating: 5 out of 5 stars5/5Networking All-in-One For Dummies Rating: 5 out of 5 stars5/5CompTIA Network+ Practice Tests: Exam N10-008 Rating: 0 out of 5 stars0 ratingsNetworking For Dummies Rating: 5 out of 5 stars5/5CCNA Certification Study Guide, Volume 2: Exam 200-301 Rating: 0 out of 5 stars0 ratingsCisco Networking All-in-One For Dummies Rating: 4 out of 5 stars4/5Home Networking Do-It-Yourself For Dummies Rating: 4 out of 5 stars4/5Learning Nagios 4 Rating: 5 out of 5 stars5/5Learn Cisco Network Administration in a Month of Lunches Rating: 0 out of 5 stars0 ratingsA Beginner's Guide to Ham Radio Rating: 0 out of 5 stars0 ratingsPractical Ethical Hacking from Scratch Rating: 5 out of 5 stars5/5AWS Certified Cloud Practitioner Study Guide: CLF-C01 Exam Rating: 5 out of 5 stars5/5Cisco Packet Tracer for Beginners Rating: 5 out of 5 stars5/5SharePoint For Dummies Rating: 0 out of 5 stars0 ratingsQuantum Computing For Dummies Rating: 0 out of 5 stars0 ratingsEmergency Preparedness and Off-Grid Communication Rating: 0 out of 5 stars0 ratingsUnlock Any Roku Device: Watch Shows, TV, & Download Apps Rating: 0 out of 5 stars0 ratingsRaspberry Pi Electronics Projects for the Evil Genius Rating: 3 out of 5 stars3/5Microsoft Azure For Dummies Rating: 0 out of 5 stars0 ratingsAWS Certified Solutions Architect Study Guide: Associate SAA-C02 Exam Rating: 0 out of 5 stars0 ratingsComputer Networking: An introductory guide for complete beginners: Computer Networking, #1 Rating: 5 out of 5 stars5/5
Related podcast episodes
Bonus: Afternoon Cyber Tea: IoT-Based Infrastructures 0% found this document usefulMobile Forensics 0% found this document usefulRERUN: Hacking for Dollars 0% found this document usefulcybersecurity maturity model certification (CMMC) (noun) [Word Notes] 0% found this document usefulIs enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document usefulCybersecurity and Hacking with Kevin Mitnick 0% found this document useful69: Human Hacker: Human Hacker 0% found this document usefulHacking | What’s in the Blue Box? | 1 0% found this document usefulEp 25: Alberto: Illegal hacker or security professional? 100% found this document useful#059 - 10 Python clean code tips drawn from code reviews 0% found this document useful139: D3f4ult: D3f4ult 0% found this document useful
Related articles
KRACK Wi-Fi Attack Threatens All Networks: How To Stay Safe And What You Need To Know MacWorldArticle
KRACK Wi-Fi Attack Threatens All Networks: How To Stay Safe And What You Need To Know
Nov 29, 2017
5 min readIntroducing Kali Maximum PCArticle
Introducing Kali
Mar 2, 2021
4 min readIntroducing Kali Linux FormatArticle
Introducing Kali
Nov 17, 2020
4 min readKRACK Wi-Fi Attack Threatens All Networks: How to Stay Safe and What You Need to Know PCWorldArticle
KRACK Wi-Fi Attack Threatens All Networks: How to Stay Safe and What You Need to Know
Dec 4, 2017
5 min readWeb App Security Linux FormatArticle
Web App Security
Jun 29, 2021
8 min readHacker’s Manual Maximum PCArticle
Hacker’s Manual
Mar 2, 2021
1 min readRun Kali Linux NetHunter on Android Linux FormatArticle
Run Kali Linux NetHunter on Android
Jan 14, 2020
7 min readHacker’s Manual Linux FormatArticle
Hacker’s Manual
Nov 17, 2020
1 min readHack The Planet/Parrot Linux FormatArticle
Hack The Planet/Parrot
May 31, 2022
2 min readEverything You May Have Wanted to Know About Ethical/Whitehat Hackers TechfastlyArticle
Everything You May Have Wanted to Know About Ethical/Whitehat Hackers
Oct 21, 2020
5 min readPeople Are Secretly Buying Handguns On The Dark Web FuturityArticle
People Are Secretly Buying Handguns On The Dark Web
Apr 24, 2019
2 min readHack The System Linux FormatArticle
Hack The System
Dec 17, 2019
If you followed our handy guide on the previous pages, then you’ll already have augmented your Kali Light installation with Nmap, a port-scanning utility par excellence and a vital part of any pen-tester’s arsenal. As mentioned on the DVD page (there
4 min readData Recovery APCArticle
Data Recovery
Mar 21, 2022
12 min readAll about Ethernet TechLifeArticle
All about Ethernet
Jan 11, 2021
4 min readHacker’s Toolkit 2o22 Linux FormatArticle
Hacker’s Toolkit 2o22
May 31, 2022
1 min readKali Linux 2020.3 64-bit Linux FormatArticle
Kali Linux 2020.3 64-bit
Nov 17, 2020
3 min readTsurugi Linux 2019.1 Linux FormatArticle
Tsurugi Linux 2019.1
Sep 24, 2019
2 min readRunning The Linux Desktop On Android Linux FormatArticle
Running The Linux Desktop On Android
Oct 22, 2019
9 min readUse Home Assistant NodeRED devices Linux FormatArticle
Use Home Assistant NodeRED devices
May 31, 2022
NodeRED is an open source graphical programming environment that can be used to complete a large number of tasks. Graphical programming languages tend to be more intuitive than textual programming languages and can be easier to learn. Support is buil
5 min readTurn Your Raspberry Pi Into A Cloud Server Linux FormatArticle
Turn Your Raspberry Pi Into A Cloud Server
Aug 24, 2021
6 min readLinux Command-Line Tips & Tricks Maximum PCArticle
Linux Command-Line Tips & Tricks
Mar 31, 2020
8 min read“Someone Who Under Takes A Ransomware Attack Isn’t A Hacker, They’re An Attacker” PC Pro MagazineArticle
“Someone Who Under Takes A Ransomware Attack Isn’t A Hacker, They’re An Attacker”
Aug 12, 2021
If you’ve ever attended an infosec or cybersecurity event, you will no doubt have noticed the preponderance of “Hacking is NOT a Crime” stickers. In 2018, some 500 such stickers were handed out at the DEF CON 26 event, the following year 5,000 were d
7 min read“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive” PC Pro MagazineArticle
“Vulnerability Hunters Tend To Be Cut From A Different Cloth. They Are Naturally In Quisitive”
Jan 6, 2022
7 min readHow to Protect Your Small Business Against a Cyber Attack EntrepreneurArticle
How to Protect Your Small Business Against a Cyber Attack
Feb 1, 2013
8 min readHacker Distributions Linux FormatArticle
Hacker Distributions
Nov 17, 2020
1 min readPut A Little Linux Into Your Android Device Linux FormatArticle
Put A Little Linux Into Your Android Device
Sep 24, 2019
9 min readTools Arsenal Linux FormatArticle
Tools Arsenal
Nov 17, 2020
1 min readThe Low-Tech Hack You're Not Prepared For EntrepreneurArticle
The Low-Tech Hack You're Not Prepared For
Sep 1, 2016
1 min readNmap Deep Dive Linux FormatArticle
Nmap Deep Dive
May 31, 2022
5 min readRevisiting Tor TechLifeArticle
Revisiting Tor
Aug 24, 2020
4 min read
Reviews for Kali Linux Wireless Penetration Testing Essentials
Rating: 5 out of 5 stars
5/5
2 ratings0 reviews
Book preview
Kali Linux Wireless Penetration Testing Essentials - Marco Alamanni
Table of Contents
Kali Linux Wireless Penetration Testing Essentials
Credits
Disclaimer
About the Author
About the Reviewers
www.PacktPub.com
Support files, eBooks, discount offers, and more
Why subscribe?
Free access for Packt account holders
Preface
What this book covers
What you need for this book
Who this book is for
Conventions
Reader feedback
Customer support
Errata
Piracy
Questions
1. Introduction to Wireless Penetration Testing
Phases of penetration testing
The planning phase
The discovery phase
The attack phase
The reporting phase
The executive summary
The technical report
Summary
2. Setting Up Your Machine with Kali Linux
Introduction to the Kali Linux distribution
Installing Kali Linux
Installation on a virtual machine
Creating a new virtual machine
Installation steps
Wireless adapter setup and configuration
Requirements of the wireless adapter
Wireless card configuration
Testing the adapter for wireless penetration testing
Troubleshooting
Summary
3. WLAN Reconnaissance
Introduction to 802.11 standard and wireless LAN
802.11 frames, types, and subtypes
Infrastructure mode and wireless access points
Wireless security
Wireless LAN scanning
Configuring the wireless adapter in monitor mode
Wireless scanning with airodump-ng
Wireless scanning with Kismet
Summary
4. WEP Cracking
An introduction to WEP
Attacks against WEP
WEP cracking with Aircrack-ng
Cracking the WEP key with connected clients
Cracking the WEP key without connected clients
The Fragmentation and ChopChop attacks
Forging and injecting ARP request frames
WEP cracking with automated tools
WEP cracking with Fern WiFi Cracker
Summary
5. WPA/WPA2 Cracking
An introduction to WPA/WPA2
Attacking the WPA
WPA cracking with Aircrack-ng
WPA cracking with Cowpatty
WPA cracking with the GPU
Pyrit
oclHashcat
WPA cracking with automated tools
Wifite
Summary
6. Attacking Access Points and the Infrastructure
Attacks against Wi-Fi Protected Setup
Reaver
Attacking WPA-Enterprise
Setting up a WPA-Enterprise network
Attacks targeting EAP
Attacking PEAP
Denial of Service attacks
DoS attacks with MDK3
Rogue access points
Attacking AP authentication credentials
Summary
7. Wireless Client Attacks
Honeypot access points and Evil Twin attacks
The Evil Twin attack in practice
Man-in-the-middle attacks
Ghost phisher
The Caffe Latte attack
The Hirte attack
Cracking WPA keys without the AP
Summary
8. Reporting and Conclusions
The four stages of report writing
Report planning
Information collection
Documentation tools
Writing the first draft
Review and finalization
The report format
The executive summary
The technical report
Summary
Conclusions
A. References
Chapter 1 – Introduction to Wireless Penetration Testing
Chapter 2 – Setting Up Your Machine with Kali Linux
Chapter 3 – WLAN Reconnaissance
Chapter 4 – WEP Cracking
Chapter 5 – WPA/WPA2 Cracking
Chapter 6 – Attacking Access Points and the Infrastructure
Chapter 7 – Wireless Client Attacks
Chapter 8 – Reporting and Conclusions
Index
Kali Linux Wireless Penetration Testing Essentials
Kali Linux Wireless Penetration Testing Essentials
Copyright © 2015 Packt Publishing
All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.
Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing, and its dealers and distributors will be held liable for any damages caused or alleged to be caused directly or indirectly by this book.
Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.
First published: July 2015
Production reference: 1240715
Published by Packt Publishing Ltd.
Livery Place
35 Livery Street
Birmingham B3 2PB, UK.
ISBN 978-1-78528-085-6
www.packtpub.com
Credits
Author
Marco Alamanni
Reviewers
Abhishek Dashora
Panos Georgiadis
Vijay Kumar
Sina Manavi
Commissioning Editor
Julian Ursell
Acquisition Editors
Prachi Bisht
Usha Iyer
Content Development Editor
Riddhi Tuljapurkar
Technical Editor
Vivek Arora
Copy Editor
Laxmi Subramanian
Project Coordinator
Sanchita Mandal
Proofreader
Safis Editing
Indexer
Rekha Nair
Graphics
Jason Monteiro
Production Coordinator
Aparna Bhagat
Cover Work
Aparna Bhagat
Disclaimer
This book contains instructions on how to perpetrate attacks with Kali Linux. These tasks are likely to be illegal in your jurisdiction in many circumstances, or at least count as terms of service violation or professional misconduct. The instructions are provided so that you can test your system against threats, understand the nature of these threats, and protect your own systems from similar attacks.
About the Author
Marco Alamanni has professional experience working as a Linux system administrator and information security administrator/analyst in banks and financial institutions.
He holds a BSc in computer science and an MSc in information security. His interests in information technology include, among other things, ethical hacking, digital forensics, malware analysis, Linux, and programming. He also collaborates with IT magazines to write articles about Linux and IT security.
I would like to thank Packt Publishing for giving me the precious opportunity to write my first complete book and the people who have worked with me on this project, especially Riddhi Tuljapurkar and Usha Iyer, for their valuable cooperation and support.
Special thanks go to my beloved family, my wife, and my two sons, to whom this book is dedicated.
About the Reviewers
Abhishek Dashora is a security researcher, penetration tester, and certified ethical hacker from India, who is currently associated with KPMG, India. He is actively involved in responsible disclosure programs and bug bounties and has received a number of hall of fames from several organizations. He is EC Council's certified ethical hacker and a CISCO certified network associate.
His hobbies include, but are not limited to, playing table tennis and cricket. He spends most of his time on the Internet.
I would like to thank Jimmy for her motivation and continuous support and my mother, Aruna Dashora, for letting me do what I wanted to.
Panos Georgiadis is working for SUSE Linux as a QA engineer for maintenance. He has studied automation engineering at Alexander Technological Educational Institute of Thessaloniki, and he's also a Cisco associate. In the past, he has had several projects running, working on hardware reviews, technical articles, and pretty much everything that has caught his attention. He has more than 10 years of experience working with Linux while crafting skills such as C/C++, Python, and Bash. Last but not least, he's also the reviewer of Cuda 5 Cookbook.
I would like to dedicate this book to my father.
Vijay Kumar works as a security consultant. He has completed his master's in science in advance computing from University of Bristol, UK, and his bachelor's in information technology from Birla Institute of Technology, Mesra, Ranchi. He has over 3 years of industry experience and 11 months of research experience. His areas of interest and experience include network security, penetration testing, network/Linux/Unix administration, designing a secure infrastructure, binary exploitation, reverse engineering, cryptography, wireless security, and forensics.
Sina Manavi is a security enthusiast interested in penetration testing and digital forensics investigation. He has a master's degree in computer science in the field of digital forensics investigation, and is also a certificate holder of CEH and CHFI. He has conducted many security talks and practical workshops and training on web/network/mobile penetration testing in Malaysia. His main interest is in mobile app penetration testing. He started his IT career as a software and database developer, and later on, joined the software and database designing field. Currently, he works as a professional trainer and information security consultant for Kaapagam Technologies Sdn. Bhd. in Malaysia.
www.PacktPub.com
Support files, eBooks, discount offers, and more
For support files and downloads related to your book, please visit www.PacktPub.com.
Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at
At www.PacktPub.com, you can also read a collection of free technical articles, sign up for a range of free newsletters and receive exclusive discounts and offers on Packt books and eBooks.
https://www2.packtpub.com/books/subscription/packtlib
Do
Enjoying the preview?
Page 1 of 1