EvilZone
Hacking and Security => Beginner's Corner => : shome April 25, 2015, 06:49:45 AM
-
I'm doing experimentation at home with different attacks, and implementations and find myself very interested in how an evil-twin attack would work. I run
airmon-ng start wlan0
I don't get many error messages, except two possible devices that may 'give me issues', and the program suggests to kill those certain PID's if problems persist. Since I am doing this on my own device(s), I know the MAC and ssid of my own router, so I skip the airodump-ng mon0 part. From here, I attempt to setup the new evil twin AP with airbase-ng -a 00:11:22:33:44:55 --essid "shome" -c 11 mon0
From here, the AP is listed as 'up', but when I try to find it on another device, it is not listed ? Is the whole point of an evil-twin attack for the new SSID to be hidden so it coincides on their machine with the regular AP it remembers anyway ? I have a toshiba satellite with a built in wireless card, about 6 years old now. I'm wondering if this machine doesn't support packet injection, because in practicing other wireless attacks, it has a hard time grabbing the WPA2 handshake I noticed. I've done plenty of googling, and have tried this with my other newer toshiba satellite and am getting the same results. Just wanted some of your .02, not asking for spoon feeding. Thanks
-
It is no solution but I suggest you look into hostapd which is far more stable than airbase-ng.
Does your card support mon mode ?
-
Does your card support packet injection?
-
Stupid question, read his post it clearly says he is not sure if it does or not. I just stuck up for you 5 min ago on your intro, I am changing my mind quickly.
Yeah, I see now. I went full retard here :P
@OP: For a good network adapter that supports pack injection, get: Alfa AWUS036NHA.
-
Review:
http://www.kalitutorials.net/2014/07/evil-twin-tutorial.html
Along with easy-creds as 0pt1musPr1m3 excellently suggested, you can also try using PwnStar:
https://github.com/SilverFoxx/PwnSTAR
Test your wifi card for injection:
aireplay-ng -9 wlan0
-
Yeah, I see now. I went full retard here :P
@OP: For a good network adapter that supports pack injection, get: Alfa AWUS036NHA.
It is a sucky card, it's just popular because it has 123445watts or something like that....
Drivers under linux & windows suck.
-
Review:
http://www.kalitutorials.net/2014/07/evil-twin-tutorial.html (http://www.kalitutorials.net/2014/07/evil-twin-tutorial.html)
Along with easy-creds as 0pt1musPr1m3 excellently suggested, you can also try using PwnStar:
https://github.com/SilverFoxx/PwnSTAR (https://github.com/SilverFoxx/PwnSTAR)
Test your wifi card for injection:
aireplay-ng -9 wlan0
I ran the command you suggested with aireplay, and it says that packet injection is working. Yet, I can't seem to get it to work. Any attack for that matter.
-
Then you're SOL. You can get the alfa 036h for like 25 bucks or so off Amazon. That supports packet injection and will key you set up an evil twin attack.
-
Review:
https://wiki.archlinux.org/index.php/Software_access_point
Wi-Fi device must support AP mode
You need a nl80211 compatible wireless device, which supports the AP operating mode. This can be verified by running iw list command, under the Supported interface modes block there should be AP listed:
$ iw list
Wiphy phy1
...
Supported interface modes:
* IBSS
* managed
* AP
* AP/VLAN
* WDS
* monitor
* mesh point
-
...I have no idea what any of you are talking about. This is a place for noobs? lol ::)
-
Yeah fuckthisshit, locked.