I wanted to demonstrate legal and technical hazards of leaving the Wireless APs in unsecured mode (without WEP or WAP-PSK), largely at Home installations.

I understand that Man in the Middle Attacks are possible which leads to some one, not only getting connected to your AP and having a free ride on your money but also commit some crime while stealing your information that gets passed through the same AP.

How should I demonstrate this live using Remote Exploit or any other MITM tool?

Pls advise!!