Results 1 to 1 of 1

Thread: Is it possible to bypass client Isolation with wifitap?

  1. #1
    Junior Member
    Join Date
    Mar 2010

    Default Is it possible to bypass client Isolation with wifitap?

    Client Isolation- Limits the clients to communicate only with the AP and not with other wireless clients (usually set on hotspots).

    Wifitap- - Wifitap is a proof of concept for direct communication over WiFi networks using traffic injection. It basically allows one to communicate over an open or WEP 802.11 network without being associated, thus bypassing any AP side restriction such as MAC address filtering or station isolation.

    Please forgive me since I am still very new if this seems like a stupid question. But based on wifitaps capabilities and being able to arp your target with in conjunction with wifitap. Is this the answer, or solution for hackers to bypass client isolation?

    From my current understanding. The only other ways the attacker could bypass client isolation is possibly mac spoofing or brute forcing the router username and password and adding your mac address to the list of allowed mac addresses for through traffic.

    This was also found from airtightnetworks using the good old Google- "an attacker can bypass the Wi-Fi client isolation feature, by setting up a fake gateway on the wired network, poison the ARP cache on authorized Wi-Fi devices using GTK and redirect all data traffic to the fake gateway instead of redirecting it directly to his Wi-Fi device. Plus, other attacks such as malware injection, port scanning, denial of service, etc. are still possible using only the first step (sending GTK-encrypted packets)"

    My router does not have the client isolation feature so I am not able to pentest any of these attacks. I would love to hear others experiences or ideas. Also, how do we defend against this if wifitap is successful or all traffic is redirected to the fake gateway.
    Last edited by marthafocker; 09-08-2010 at 02:55 PM.

Similar Threads

  1. Script 4 AV bypass meterpreters
    By firebits in forum Tutoriais e Howtos
    Replies: 0
    Last Post: 06-08-2010, 07:03 PM
  2. Bypass safe mode
    By xpleet in forum OLD Pentesting
    Replies: 8
    Last Post: 05-01-2009, 08:35 PM
  3. Client Isolation
    By Server in forum OLD Specialist Topics
    Replies: 7
    Last Post: 10-10-2008, 02:02 PM
  4. wifitap error no /dev/net/tun
    By thetom in forum OLD Wireless
    Replies: 7
    Last Post: 07-24-2007, 08:52 AM
  5. uncrackable?? wireless isolation
    By -tGoM- in forum OLD Newbie Area
    Replies: 0
    Last Post: 03-14-2007, 10:52 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts