Lesson 3: WiFi Security Assessment
Assess WiFi security vulnerabilities and identify weak configurations.
Objectives
- Identify WEP/WPA/WPA2 vulnerabilities
- Detect rogue access points
- Analyze weak authentication mechanisms
- Assess network encryption strength
Security Analysis
# Check encryption types sudo airodump-ng -w security_scan wlan0mon # Target WEP networks sudo aireplay-ng -1 0 -a [BSSID] -h [MAC] wlan0mon # WPA handshake capture sudo aireplay-ng -0 1 -a [BSSID] -c [CLIENT] wlan0mon
Rogue AP Detection
# Monitor for rogue APs sudo airodump-ng --manufacturer wlan0mon # Compare with known networks sudo airodump-ng --write known_networks wlan0mon # Analyze ESSID spoofing sudo airodump-ng --essid-regex '.*Company.*' wlan0mon