Collaborate Disseminate
Numerous Google searches found little useful information. The most comprehensive list is at http://www.kb.cert.org/vuls/byvendor?searchview&Query=FIELD+Reference=228519&SearchOrder=4
and most vendors are reported as … Continue reading How do I check if my router is patched against the KRACK exploit?
As I understand how most WiFi hotspots work, they require the user to authenticate on a Web page that is served by a proxy on the WiFi default gateway. After whatever authentication process (if any) the user went through on the Web page, he is then allowed to connect to the Internet through MAC address filtering. But the WiFi connection is still in the clear and subject to casual eavesdropping isn’t it?
Or are there some WiFi protocols I am not aware of that would allow the user terminal to establish a new encrypted channel (à la WPA2) with the AP based on the interaction that the user had with the Web authentication process?
Edit: To clarify the reason for my inquiry is that I noticed that most WiFi clients nowadays notify the user joining such network that “An authentication is required”. On a mobile phone by selecting this notification the browser will directly open the authentication Web page. So I am supposing that there’s some WiFi protocol level exchange going on between the WiFi client and the AP related to this authentication step, so why not also getting a randomly generated PSK through a public key from the AP?
Can any known smartphone wifi chip do monitor mode? Is there a smartphone app that does wifi monitoring? In such an app can a script or macro or alarm be set to trip on any kind of interruption in 3/4 handshake on any specifi… Continue reading Portable self contained KRACK detector [on hold]
Are wpa_supplicant versions prior to 2.x (e.g. 0.2.x, 0.4.x, 0.6.x, 0.7.3, etc.) also vulnerable to any of the KRACK CVEs? I’ve looked at the source code but it’s different enough from the 2.x releases that I can’t immediate… Continue reading are older wpa_supplicant versions vulnerable to KRACK?
As operator of an important AP, e.g. Stack Overflow developers’ office building, can I:
Disconnect everybody.
Change the AP shared key through Ethernet media.
Securely distribute new key to wifi clients.
*Monitor 802.11 AP … Continue reading KRACK interim guidance stopgap
Are there any known models of wifi dongles that are immune to four way nonce replay? The point being to be able to forget patching Windows and Linux, but to protect in the networking hardware.
Is there a known model that wi… Continue reading Are there any KRACK-proof Wi-Fi sticks
This week’s Threatpost News Wrap Podcast recaps the ROCA, KRACK and Boundhook attacks, as well as the release of Google Advanced Protection for Gmail. Continue reading Threatpost News Wrap, Oct. 20, 2017
I have a TP-LINK TD-W8151N 150Mbps Wireless N ADSL2+ Modem Router.
Is this model vulnerable to KRACK?
It is not specified in the WPA2 Security (KRACKs) Vulnerability Statement. Will TP-Link publish firmware updates for this m… Continue reading Is TP-LINK TD-W8151N vulnerable to KRACK?
Monday of this week: researchers announced the WPA2 KRACK exploit that effectively voids the protection of WPA2. Supposedly Microsoft already fixed it, Apple’s working on patching it for Mac OS and iOS. Android and Linux get … Continue reading Should I wait for Apple to fix the recent WPA2 KRACK exploit before downloading new apps over Wi-Fi?
Is there any way an attack AP can break into an existing connection where handshake has already completed? Can the AP somehow force reauth?
Continue reading Can a KRACK attack force a reauthentication handshake?