Results 1 to 6 of 6

Thread: Access point question

  1. #1
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default Access point question

    Is it possable to pose as a known accesspoint so clients attempt to authenticate to you and thus hand over the wep key? If so what is this attack called and where can I read up on how it is done?

  2. #2
    Senior Member streaker69's Avatar
    Join Date
    Jan 2010
    Location
    Virginville, BlueBall, Bird In Hand, Intercourse, Paradise, PA
    Posts
    3,535

    Default

    Quote Originally Posted by Upsman View Post
    Is it possable to pose as a known accesspoint so clients attempt to authenticate to you and thus hand over the wep key? If so what is this attack called and where can I read up on how it is done?
    Why would they hand over their WEP key to you if you don't already know what the WEP key is of the AP they're attempting to connect to? Seems to be rather paradoxical doesn't it?

    Plus since WEP is easily cracked in about 2 - 3 minutes, seems like a silly way to go about things.
    A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

  3. #3
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default

    Quote Originally Posted by Upsman View Post
    Is it possable to pose as a known accesspoint so clients attempt to authenticate to you and thus hand over the wep key? If so what is this attack called and where can I read up on how it is done?
    Yes. Yes. No. Evil Twin. Google.
    Thorn
    Stop the TSA now! Boycott the airlines.

  4. #4
    Junior Member
    Join Date
    Feb 2006
    Posts
    70

    Default

    What I mean is I spooff the AP both ESSID and BSSID then they would attempt to connect to me because they think I am the AP. Then when prompted they enter the wep key like they normally would with the real accesspoint.

    The would basically just be handing it over.
    This could be used in cases when you cant collect enough IV's to crack it.

  5. #5
    Junior Member
    Join Date
    Apr 2007
    Posts
    57

    Default

    There are already 'tools' out there to do what you want.

    http://www.google.com <--- Research.

    Or even better try using the 'Search' function here.

  6. #6
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default

    Quote Originally Posted by Upsman View Post
    What I mean is I spooff the AP both ESSID and BSSID then they would attempt to connect to me because they think I am the AP. Then when prompted they enter the wep key like they normally would with the real accesspoint.

    The would basically just be handing it over.
    This could be used in cases when you cant collect enough IV's to crack it.
    Understood, What part of my answer didn't you get? Maybe it will help if I speak slowly.

    Quote Originally Posted by Upsman View Post
    What I mean is I spooff the AP both ESSID and BSSID then they would attempt to connect to me because they think I am the AP.
    Yes, they will connect to the new "twinned" AP.

    Quote Originally Posted by Upsman View Post
    Then when prompted they enter the wep key like they normally would with the real accesspoint.
    No, because there is no longer any encryption. Once they connect to your unencrypted "twin" AP, they are no longer using any encryption. You would have to have WEP turned on in the first place. Catch 22.

    Quote Originally Posted by Upsman View Post
    The would basically just be handing it over.
    No, they wouldn't. All you have managed to do is to have them connect to an unencrypted AP. Read the above.

    You might want to research how the connection and handshaking for encryption works.
    Thorn
    Stop the TSA now! Boycott the airlines.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •