Collaborate Disseminate
I’m trying to understand EAP-TLS authentication, but I’m struggling to understand a few bits:
Before the supplicant sends any certificates to the server, it usually verifies the server’s identity.
After it does, how can it ensure that it… Continue reading How does the EAP-TLS handshake work, exactly?
Is security compromised if every client uses the same client certificate to authenticate with WPA2-EAP-TLS?
In essence, we want to provide an open wifi network, but want to ensure users cannot see each other’s traffic. With WPA2-PSK, this … Continue reading WPA2-EAP-TLS with global client certificate
Trying to demo cracking a WPA2 protected AP using the aircrack suite, but the results seem to be nondeterministic (i.e. not good for demos).
Did some detective work with Wireshark and observed that after the authentication and associatio… Continue reading Failing to capture messages 1 and 3 of WPA2 4-way handshake?
Imagine there is a wireless network using WPA2, and an attacker has come along with his wireless card in monitor mode. What will the packets from that network look like? Is any information disclosed i.e Destination/Source IPs/Ports? Or is … Continue reading What does WPA2 traffic look like to a packet sniffer that is not connected to the network?
I’ve been trying to find some answers regarding using MAC filtering on my router in addition to having WPA2 encryption but I couldn’t find any clear ones. I understand that using MAC filtering solely is bad security practice since anyone c… Continue reading Using MAC Filtering in addition to WPA2 Encryption
I am writing my master’s thesis about WLANs, and there is something what I don’t really understand. This may be a dumb question but I didn’t find a clear explanation.
WPA uses encryption TKIP. WPA2 uses encryption AES. So far so good. What… Continue reading Does WPA2 use TKIP or not?
Unpatched IoT gadgets, smartphones, tablets, laptops, Wi-Fi access points and routers with Broadcom chips are all at risk from the KrØØk vulnerability.
Read more in my article on the Bitdefender BOX blog.
Continue reading Have you patched your IoT devices against the KrØØk Wi-Fi chip flaw?
I was trying to aireplay’ng my home wifi but I understood that with the new generation of AP there is a system of protected management frames. So I’m asking, is it still worth to make an evil twin attack? I think no, because without deauth… Continue reading Wifi with protected management frames, is it worth still evin twin attack?
I was trying to aireplay’ng my home WiFi but I understood that with the new generation of APs, there is a system of protected management frames. So I’m asking, is it still worth it to perform an evil twin attack? I think not, because witho… Continue reading With WiFi now having protected management frames, is it still worth attempting an evil twin attack?
I’m trying to crack my wifi (WPA-CCMP) password to test its strength and security, I’m using the commview for wifi and aircrack-ng software on windows 10. I’ve three laptops, Windows 10 (64bit) with dual boot ubuntu 18.04, only Windows 10(… Continue reading wifi cracking using a network adapter which doesn’t support packet injection