Fake AP to collect WPA key ?

**Tex-Twil** · 08-29-2007, 06:28 PM

Hello,
since it's possible to make wifi cards act as and Access Point under Linux, I was thinking if it's possible to create a "fake" wireless network with the same essid as the victim's one and collect the password.

Is this possible ? In theory.

Thanks,
regards

**streaker69** · 08-29-2007, 06:35 PM

Originally Posted by Tex-Twil

Hello,
since it's possible to make wifi cards act as and Access Point under Linux, I was thinking if it's possible to create a "fake" wireless network with the same essid as the victim's one and collect the password.

Is this possible ? In theory.

Thanks,
regards

Your theory is wrong. I'll let you think about it and see if you can figure out why.

**PrairieFire** · 08-29-2007, 06:35 PM

Originally Posted by Tex-Twil

Hello,
since it's possible to make wifi cards act as and Access Point under Linux, I was thinking if it's possible to create a "fake" wireless network with the same essid as the victim's one and collect the password.

Is this possible ? In theory.

Thanks,
regards

Would need physical access and even then if the PC does not have admin privileges you cannot obtain a saved key.

**crazy_luv** · 08-29-2007, 06:35 PM

as far as i know windows xp only needs essid to connect to the AP
and if the AP ESSID was in its preferred network setting it will automatically connect to the one with stronger signal
and that can be easily done with a 10-15 db antenna for the rausb0 card

----
i think it is possible ..but i don't know how

**Tex-Twil** · 08-29-2007, 06:42 PM

Originally Posted by streaker69

Your theory is wrong. I'll let you think about it and see if you can figure out why.

Cos the password just doesn't go from the client to the server. And it is the AP who authenticates the client so the AP has to know the psk. And the authentication is mutual.

**streaker69** · 08-29-2007, 06:51 PM

Originally Posted by Tex-Twil

Cos the password just doesn't go from the client to the server. And it is the AP who authenticates the client so the AP has to know the psk.

There ya go, now that wasn't hard was it?

**Tex-Twil** · 08-29-2007, 06:55 PM

Originally Posted by streaker69

There ya go, now that wasn't hard was it?

no it wasn't. I would even qualify my question as "stupid"

cheers

**streaker69** · 08-29-2007, 06:59 PM

Originally Posted by Tex-Twil

no it wasn't. I would even qualify my question as "stupid"

cheers

There are no stupid questions, only stupid people asking them....

<looks to the idiot corner>

**Tex-Twil** · 08-29-2007, 07:04 PM

Originally Posted by streaker69

There are no stupid questions, only stupid people asking them....

lol, ok, I will say it : "I AM STUPID"

**crazy_luv** · 08-29-2007, 07:15 PM

hey TEX didnt i tell u before it wont work ...just emabrssing yourself

BackTrack Linux - Penetration Testing Distribution

Thread: Fake AP to collect WPA key ?

Thread Tools

Search Thread

Display

Fake AP to collect WPA key ?

Posting Permissions