TABLE OF CONTENTS After reading this chapter, you will be able to identify your specific WLAN target and determine what security measures are being used. Based on that information, you will be able to assess the probability of successfully penetrating the network, and determine the correct tools and methodology for successfully compromising your target.
The Auditor Security Collection provides an incredible suite of wireless network discovery and penetration test tools. To perform successful penetration tests against wireless networks, you need to be familiar with the use of many of these tools and their specific roles in the pen testing process.
To attack your target network, you first need to find your target network. Auditor provides two tools for wireless local area network (WLAN) discovery: Kismet and Wellenreiter
After locating the target network, many options are open to penetration testers, and Auditor provides many of the tools necessary to accomplish attacks based on these options.
Change-Mac can be used to change your client's Media Access Control (MAC) address and bypass MAC address filtering. Both Kismet and Ethereal can be used to determine the type of encryption that is being used by your target network, and can capture any clear text information that may be beneficial to you during your penetration test.
Once you have determined the type of encryption in place, several different tools provide the capability to crack different encryption mechanisms that may be in place. Void11 is used to de-authenticate clients from the target network. The Aircrack suite (Airodump, Aireplay,...
