Jump to content

Wifi Landing Page


iisjman07

Recommended Posts

I have a friend who has asked me to test the security of his wireless network. I assumed this would be relatively simple, but it's one of those networks in which instead of having an encryption key, it has a landing page whih you need to login to. I'm not sure how to test this, anyone done it before? Basically the objective is to get internet access without logging in; all I know at the moment is that pinging an outside host will resolve that hosts IP address successfully.

Link to comment
Share on other sites

Well if you can really ping an outside host, than that login page its not doing what its suppose to do.

Here is a demonstration, of how you can get internet access

http://www.hak5.org/episodes/episode-504

Link to comment
Share on other sites

You could try sniffing the network for a bit till you know the MAC address of someone who has authenticated. Once they have stopped using the network try using their MAC address.

It is quite common for captive portals to keep a list of MAC addresses that have authenticated and then capture any web connections that don't come from one of those MAC addresses.

Link to comment
Share on other sites

You could try sniffing the network for a bit till you know the MAC address of someone who has authenticated. Once they have stopped using the network try using their MAC address.

It is quite common for captive portals to keep a list of MAC addresses that have authenticated and then capture any web connections that don't come from one of those MAC addresses.

Or better yet, you could potentially sniff the credentials used to login. Provided the traffic is not encrypted.

Edited by Infiltrator
Link to comment
Share on other sites

Step 1.

Setup fake AP

Step 2.

Setup fake landing page

Step 3.

Steal passwsords

U mad wireless product vendor?

Even easier, since you can already connect to the AP and ping websites, just MITM everyone and collect the router password directly from the network.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...