will-wtf Posted October 15, 2008 Share Posted October 15, 2008 So far I have simply done some packet sniffing and some arp spoofing, and i had a look at upside-down-ternet, but haven't figured it yet, But what other things can we do... Preferabley links to tools and notes Quote Link to comment Share on other sites More sharing options...
Infolookup Posted October 23, 2008 Share Posted October 23, 2008 you might want to look into installing nessus, nmap, metaspoit and a few others tools on your host system then try to see how vulnerable your test subjects are :). Quote Link to comment Share on other sites More sharing options...
Mudley Posted October 23, 2008 Share Posted October 23, 2008 Well, I've got my Fon running Jasager, but does it only works on unencrypted networks? My target who's got a wpa profile, does'nt connect at all... Only targets with unencrypted profiles... Did I do something wrong, or is it working as designed? Quote Link to comment Share on other sites More sharing options...
z00m Posted October 23, 2008 Share Posted October 23, 2008 Well, I've got my Fon running Jasager, but does it only works on unencrypted networks? My target who's got a wpa profile, does'nt connect at all... Only targets with unencrypted profiles... Did I do something wrong, or is it working as designed? I dont own the Fon but i think im right with what im saying here if not someone correct me, if they are connected to a wifi network with encryption on even if your rouge AP has the same SSID as the real trusted one, there computer will pick the encrypted acesspoint before the rouge one. example: rouge AP no encryption called (NETGEAR) real AP with WEP or WPA encryption called (NETGEAR) The targets computer is configured to connect to AP named (NETGEAR) with wep, so it will maybe try to connect to yours then notice there is no encryption, so it then thinks, OH! im configured for WEP, one second this is not safe. Rescans and finds same SSID with WEP trys the key thats stored in the targets computer anyway and connects. Hope that explains why that is happening. Now if for some reason the targets router was turned off one day and he turned on his PC you could use airbase-ng that will respond to all probe requests when the computer is looking for NETGEAR with WEP it will say "YO thats me" then they will connect to the rouge AP, but only if there real one is not there. Quote Link to comment Share on other sites More sharing options...
Mudley Posted October 24, 2008 Share Posted October 24, 2008 Well....ehrm... airbaise-ng isn't installed on the fon... Perhaps anyone with a fon can tell me if this is working as designed? Quote Link to comment Share on other sites More sharing options...
digininja Posted October 24, 2008 Share Posted October 24, 2008 Well, I've got my Fon running Jasager, but does it only works on unencrypted networks? My target who's got a wpa profile, does'nt connect at all... Only targets with unencrypted profiles... Did I do something wrong, or is it working as designed? It depends on the clients configuration, if it expects WEP/WPA and doesn't get it some will move on till they find an encrypted network, others will just drop back to unencrypted. Jasager can only do unencrypted as it obviously doesn't know the encryption keys for the encrypted networks. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.