Wi-Fi Security and Pentesting

About Course

This course is ideal for penetration testers, security enthusiasts and network administrators.
A non-exhaustive list of topics to be taught includes:

Bypassing WLAN Authentication – Shared Key, MAC Filtering, Hidden SSIDs
Cracking WLAN Encryption – WEP, WPA/WPA2 Personal and Enterprise, Understanding encryption based flaws (WEP,TKIP,CCMP)
Attacking the WLAN Infrastructure – Rogues Devices, Evil Twins, DoS Attacks, MITM, Wi-Fi Protected Setup
Advanced Enterprise Attacks – 802.1x, EAP, LEAP, PEAP, EAP-TTLS
Attacking the Wireless Client – Honeypots and Hotspot attacks, Caffe-Latte, Hirte, Ad-Hoc Networks and Viral SSIDs, WiFishing
Breaking into the Client – Metasploit, SET, Social Engineering
Enterprise Wi-Fi Worms, Backdoors and Botnets

Course Content

Course

Getting Started

13:37
Bands, Channels and Sniffing

16:19
Pwning Beacon Frames

19:28
Dissecting AP-Client Communication

20:11
Dissecting WLAN Headers

35:55
Pwning Hidden SSIDs

29:44
Laughing Off MAC Filters

17:18
Hacking WLAN Authentication

24:23
Hotspot Attacks

28:57
Hacking Isolated Clients

24:34
ALFA Card King-Fu

17:08
Man in the Middle Attacks

25:49
SSL Man in the Middle Attacks

16:35
WEP In-Depth

32:12
WEP Cracking

23:17
Caffe Latte Attack Basics

30:37
Caffe Latte Attack Demo

22:38
KoreK’s Chop Chop Attack

11:50
Fragmentation and Hirte Attack

21:28
Understanding WPA_WPA2

18:10
WPA-PSK

33:20
WPA-PSK Cracking

20:07
WPA2-PSK Cracking

09:31
Speeding up WPA_WPA2-PSK Cracking

18:31
Mood Swings of a Wandering Wi-Fi Client

26:26
Cracking WPA_WPA2-PSK with just a Client

06:05
Debugging Questions

04:19
WPA Supplicant

13:47
Setting up FreeRadius-WPE

17:55
EAP-MD5 Basics and Demo

23:34
Cracking EAP-MD5 with Eapmd5pass

17:21
EAP Types and PEAP Demo

22:27
Cracking PEAP

17:36
Cracking PEAP in a Windows Network

11:48
Cracking EAP-TTLS

11:13
Insecurity in 3rd Party Wi-Fi Utilities

08:57
Conclusion and Road Ahead

04:49
Windows Wireless Kung-Fu

16:45
Creating Wireless Backdoors

20:16
Malware, Metasploit and the Hosted Network

12:21
Wi-Fi Challenge 1

04:52
Wi-Fi Challenge 1 – Solution

23:54
Wi-Fi Challenge 2

06:23
Wi-Fi Challenge 2 – Solution

15:52
Wi-Fi Challenge 3

07:41
Wi-Fi Challenge 3 – Solution

12:35
Detecting AP Spoofing Attacks

13:42
Detecting AP MAC Spoofing

11:23
Beating Wireless IDS_IPS with Multipots

15:29
Malicious SSID – HTML Injection and XSS

13:51
Malicious SSID – SQL Injection

13:27
Malicious SSID – CSRF

07:34
Hostapd Basics

11:27
Hostapd with DCHP and Webserver

10:07
Hostapd – WEP AP

09:26
Hostapd – WPA_WPA2 PSK AP

09:36
Hostapd – Multiple APs on same Wi-Fi card

08:47
Hostapd – WPA Enterprise Honeypot

11:35
Airgraph-NG

11:32
Airtun-NG

12:02
Windows Wi-Fi API Introduction

05:23
Windows Wi-Fi API – Scanner

19:05
Enhanced Wi-Fi Scanner – Design

11:04
Enhanced Wi-Fi Scanner – Demo

07:47
Client Disconnect – Demo

13:26
Understanding Wi-Fi Event Logs on Windows

13:24
Understanding Wi-Fi Event Logs on Windows Part 2

11:10
Understanding Wi-Fi Event Logs on Windows Part 3

08:18
Wpa_supplicant & Wpa_Cli Basics

11:06
Wpa_cli – Unencrypted Network

11:05
Wpa_cli – WEP Network

06:51
Wpa_cli – WPA-PSK Network

07:23
Wpa_cli – WPA2-PSK Network

08:35
WPA_Supplicant Deep Dive

13:54
WPA_Supplicant All Networks

09:40
WPA_Supplicant Wpa_cli WPS

10:39
WPA_Supplicant Logging Levels

08:21
WPA_Supplicant Multiple Cards

06:11
WPA_Supplicant WPA2 Enterprise PEAP

09:08
WPA_Supplicant WPA2 Enterprise TTLS

04:32

Student Ratings & Reviews

No Review Yet

About Course

Course Content

Course

Getting Started

Bands, Channels and Sniffing

Pwning Beacon Frames

Dissecting AP-Client Communication

Dissecting WLAN Headers

Pwning Hidden SSIDs

Laughing Off MAC Filters

Hacking WLAN Authentication

Hotspot Attacks

Hacking Isolated Clients

ALFA Card King-Fu

Man in the Middle Attacks

SSL Man in the Middle Attacks

WEP In-Depth

WEP Cracking

Caffe Latte Attack Basics

Caffe Latte Attack Demo

KoreK’s Chop Chop Attack

Fragmentation and Hirte Attack

Understanding WPA_WPA2

WPA-PSK

WPA-PSK Cracking

WPA2-PSK Cracking

Speeding up WPA_WPA2-PSK Cracking

Mood Swings of a Wandering Wi-Fi Client

Cracking WPA_WPA2-PSK with just a Client

Debugging Questions

WPA Supplicant

Setting up FreeRadius-WPE

EAP-MD5 Basics and Demo

Cracking EAP-MD5 with Eapmd5pass

EAP Types and PEAP Demo

Cracking PEAP

Cracking PEAP in a Windows Network

Cracking EAP-TTLS

Insecurity in 3rd Party Wi-Fi Utilities

Conclusion and Road Ahead

Windows Wireless Kung-Fu

Creating Wireless Backdoors

Malware, Metasploit and the Hosted Network

Wi-Fi Challenge 1

Wi-Fi Challenge 1 – Solution

Wi-Fi Challenge 2

Wi-Fi Challenge 2 – Solution

Wi-Fi Challenge 3

Wi-Fi Challenge 3 – Solution

Detecting AP Spoofing Attacks

Detecting AP MAC Spoofing

Beating Wireless IDS_IPS with Multipots

Malicious SSID – HTML Injection and XSS

Malicious SSID – SQL Injection

Malicious SSID – CSRF

Hostapd Basics

Hostapd with DCHP and Webserver

Hostapd – WEP AP

Hostapd – WPA_WPA2 PSK AP

Hostapd – Multiple APs on same Wi-Fi card

Hostapd – WPA Enterprise Honeypot

Airgraph-NG

Airtun-NG

Windows Wi-Fi API Introduction

Windows Wi-Fi API – Scanner

Enhanced Wi-Fi Scanner – Design

Enhanced Wi-Fi Scanner – Demo

Client Disconnect – Demo

Understanding Wi-Fi Event Logs on Windows

Understanding Wi-Fi Event Logs on Windows Part 2

Understanding Wi-Fi Event Logs on Windows Part 3

Wpa_supplicant & Wpa_Cli Basics

Wpa_cli – Unencrypted Network

Wpa_cli – WEP Network

Wpa_cli – WPA-PSK Network

Wpa_cli – WPA2-PSK Network

WPA_Supplicant Deep Dive

WPA_Supplicant All Networks

WPA_Supplicant Wpa_cli WPS

WPA_Supplicant Logging Levels