Network and Systems Documentation
{ Category Archives }
Attached is a presentation which goes into a large overview of various 802.11 DoS attack conditions. This is not a step-by-step guide, and is merely to inspire discussion into the attack vectors. Please note the original sources from this presentation which will provide you very detailed information about the attacks. This is especially true for the RTS/CTS attacks, for an excellent step-by-step guide, this book is definitely worth it. Wireless Hacking Exposed
Bold indicates a button clicked or key pressed.
“quotes” indicates a value which has been entered.
Grey block quote is a command typed directly into the console.
If an 802.11 wireless network ever employs a MAC access list, this is a simple solution for easily defeating this terrible security measure. This already assumes you have BackTrack loaded and a wireless card capable of monitor mode.
1. In a terminal brought up the wireless interface, and turn on airmon as show in Figure 1
Figure 1: Starting card up in monitor mode.
2. Started airodump-ng to collect a valid MAC address of a collected client as seen in Figure 2.
Figure 2: Locating an assocated station to mimic.
3. Copy out a valid MAC address and apply it to the the current wireless interface as seen in Figure 3.
Figure 3: Mimic the stolen station MAC address.
4. Use this wireless interface to associate to the MAC filtering network with success. If you experience intermittent connection issues, this is because you are sharing a MAC address with another associated client and this can cause unexpected results.
