Pages: [1]

Author Topic: EvilTwin AP Question  (Read 594 times)

0 Members and 1 Guest are viewing this topic.

aes256

  • Guest
EvilTwin AP Question
« on: August 13, 2015, 11:06:43 am »
I'm in the process of setting up an EvilTwin connection, I'm doing this to capture the WPA/WPA2 password, because WPS is disabled. And bruteforcing it with a dictionary attack would take too long and most likely fail.

So my question is, the network I'm attempting to break into has some really strange router, its not like Verizon or anything where I can just download the HTML file off somewhere else. But this is some odd router, and I have no idea what theme it is, and I can't social engineer these people if the theme is completely wrong or just some plain odd one (they aren't that ignorant to infosec).

I was thinking about just social engineering them by deauthing them when using WPA encryption and say try to downgrade to WEP, but I wanted to do something more sophisticated and creative. And I don't even work there, so why would they listen to me??

I think I might just be ignorant and have no idea what I'm talking about, and there is probably an easy fix for this. But, I'd appreciate any help. Thanks. (I'm kind-of new to this).
« Last Edit: August 13, 2015, 11:07:00 am by aes256 »
Report to moderator   Logged

Offline Avengers

  • Serf
  • *
  • Posts: 21
  • Cookies: -1
  • S.H.I.E.L.D
    • View Profile
Re: EvilTwin AP Question
« Reply #1 on: August 17, 2015, 12:02:01 am »
Do you know anything about the router? Brand name, model number, ect? Then at least if you don't have a logo you could design one or just use the brand and model or whatnot.
Report to moderator   Logged

Offline proxx

  • Avatarception
  • Global Moderator
  • Titan
  • *
  • Posts: 2803
  • Cookies: 256
  • ФФФ
    • View Profile
Re: EvilTwin AP Question
« Reply #2 on: August 17, 2015, 06:05:39 am »
Quote from: aes256 on August 13, 2015, 11:06:43 am
I'm in the process of setting up an EvilTwin connection, I'm doing this to capture the WPA/WPA2 password, because WPS is disabled. And bruteforcing it with a dictionary attack would take too long and most likely fail.

So my question is, the network I'm attempting to break into has some really strange router, its not like Verizon or anything where I can just download the HTML file off somewhere else. But this is some odd router, and I have no idea what theme it is, and I can't social engineer these people if the theme is completely wrong or just some plain odd one (they aren't that ignorant to infosec).

I was thinking about just social engineering them by deauthing them when using WPA encryption and say try to downgrade to WEP, but I wanted to do something more sophisticated and creative. And I don't even work there, so why would they listen to me??

I think I might just be ignorant and have no idea what I'm talking about, and there is probably an easy fix for this. But, I'd appreciate any help. Thanks. (I'm kind-of new to this).

Are you always this jumpy?
Anyway, you can find the vendor based on the MAC addr of the radio, this should get you started.
http://www.macvendorlookup.com/
« Last Edit: August 17, 2015, 06:07:15 am by proxx »
Report to moderator   Logged
Wtf where you thinking with that signature? - Phage.
This was another little experiment *evillaughter - Proxx.
Evilception... - Phage
Pages: [1]