Wireless Penetration Testing Tool

Wireless Penetration Testing

TOOLS:

» Free Wifi – How to get free wifi.

MONITOR

» Airgeddon – This is a multi-use bash script for Linux systems to audit wireless networks.

» GISKismet – Is a wireless recon visualization tool to represent data gathered using Kismet in a flexible manner.

» HostedNetworkStarter – Is a simple tool for Windows 7 and later that allows you to easily create a wifi hotspot with your wireless network adapter, using the Wifi hosted network feature of Windows operating system.

» inSSIDer – Is a WiFi troubleshooting and optimization tool that takes small WiFi network management to a whole new level.

» Kismet – Is a wireless network detector, sniffer, and intrusion detection system. Kismet works predominately with Wi-Fi (IEEE 802.11) networks but can be expanded via plug-ins to handle other network types.

» LinSSID – Graphical wireless scanning for Linux.

» NetStumbler – Is a tool for Windows that facilitates detection of Wireless LANs using the 802.11b, 802.11a, and 802.11g WLAN standards.

» wellenreiter – Is a wireless network discovery and auditing tool.

» whoishere.py – WIFI Client Detection – Identify people by assigning a name to a device performing a wireless probe request.

» WifiChannelMonitor – Is a utility for Windows that captures wifi traffic on the channel you choose, using Microsoft Network Monitor capture driver in monitor mode, and displays extensive information about access points and the wifi clients connected to them.

» WifiInfoView – Scans the wireless networks in your area and displays extensive information about them.

» Wireless Network Watcher – Is a small utility that scans your wireless network and displays the list of all computers and devices that are currently connected to your network.

ATTACK: WEP / WPA / WPS / EAP

» Aircrack-ng – Is a complete suite of tools to assess WiFi network security.

» AirSnort – Is a wireless LAN (WLAN) tool which cracks encryption keys on 802.11b WEP networks.

» Asleap – Demonstrates a serious deficiency in proprietary Cisco LEAP networks. Since LEAP uses a variant of MS-CHAPv2 for the authentication exchange, it is susceptible to accelerated offline dictionary attacks.

» Auto Reaver – Multiple access point attack using Reaver.

» Auto_EAP – Automated Brute-Force Login Attacks Against EAP Networks.

» Bully – Is a new implementation of the WPS brute force attack, written in C.

» coWPAtty – Implementation of an offline dictionary attack against WPA/WPA2 networks using PSK-based authentication.

» crackle – Crack and decrypt BLE encryption.

» Fern Wifi Cracker – Fern Wifi Cracker is a Wireless security auditing and attack software program, is able to crack and recover WEP/WPA/WPS keys and also run other network-based attacks on wireless or Ethernet-based networks.

» Fluxion – is the future of MITM WPA attacks, an easy to use wifi cracker, to test your own network.

» FruityWiFi – Is an open source tool to audit wireless networks. It allows the user to deploy advanced attacks by directly using the web interface or by sending messages to it.

» Metasploit getwlanprofiles – Is a simple Meterpreter script which when ran against Windows 7 or Vista boxes will extract and download all the wireless profiles that are set up with the Windows client.

» Infernal-Twin – This Is Evil Twin Attack Automated (Wireless Hacking).

» KillerBee – Is a Python-based framework and toolset for exploring and exploiting the security of ZigBee and IEEE 802.15.4 networks.

» mdk3 – Is a proof-of-concept tool to exploit common IEEE 802.11 protocol weaknesses.

» PixieWPS – Is a tool written in C used to bruteforce offline the WPS pin exploiting the low or non-existing entropy of some APs (pixie dust attack).

» Reaver – Implements a brute force attack against Wifi Protected Setup (WPS) registrar PINs in order to recover WPA/WPA2 passphrases.

» WEPCrack – Is an open source tool for breaking 802.11 WEP secret keys.

» wifijammer – Continuously jam all wifi clients/routers.

» Wifiphisher – Automated phishing attacks against Wi-Fi networks.

» Wifite – To attack multiple WEP, WPA, and WPS encrypted networks in a row.

» zizzania – Sniffs wireless traffic listening for WPA handshakes and dumping only those frames suitable to be decrypted (one beacon + EAPOL frames + data). In order to speed up the process, zizzania sends IEEE 802.11 DeAuth frames to the stations whose handshake is needed, properly handling retransmissions and reassociations and trying to limit the number of DeAuth frames sent to each station.

DEFENSE

» waidps – Wireless Auditing, Intrusion Detection & Prevention System.

FAKE AP

» fakeAP – Create fake AP in Kali with 1 command.

» Ghost Phisher – Is a Wireless and Ethernet security auditing and attack software program written using the Python Programming

Language and the Python Qt GUI library, the program is able to emulate access points and deploy.

» Jasager – is a wifi man-in-the-middle tool which uses a fake access point to lure unsuspecting victims to connect to your network.

» Karma – is a set of patches to access point software to get it to respond to probe requests not just for itself but for any ESSID requested.

» mitmAP – A python program to create a fake AP and sniff data.

» Wifi Honey

» WiFi-Pumpkin – is an open source security tool that provides the Rogue access point to Man-In-The-Middle and network attacks.

LOCAL

» Wifi-Dumper – Dump the wifi profiles and cleartext passwords of the connected access points on the Windows machine.

» Wifresti – Find your wireless network password in Windows, Linux, and Mac OS.

ANDROID

» Hijacker – Aircrack, Airodump, Aireplay, MDK3 and Reaver GUI Application for Android – Requires monitor mode.