This constitutes the second part of network penetration testing. It enables users to gain accurate information about the devices connected to the network and launch attacks. If the network is encrypted, we need to decrypt it to access it. If it doesn’t use encryption, then we can connect to it directly. Depending on the encryption used by a network such as WEP, WPA, WPA2, we can further decrypt it.
To crack WEP, first, we need to capture several packets and then use the tool aircrack-ng to use statistical attacks and break the WEP key. The chances to break the WEP key are higher with more than one network.
To crack Wi-Fi Protected Access(WPA) encryption, we need to first crack the unique WPA key with the help of packets that contain useful information. These packets are known as handshake packets. When a new device is connected to the network, these four handshake packets are sent to the target network to authenticate the connection. WAP can then be cracked using a wordlist (using aircrack-ng) that contains the password and the captured handshake.
Post-Connection Attacks
In the previous sections, we discussed the attacks that are done by gaining access to the connection. Now we will move to the attacks that can be performed after connecting to the network.
Contrary to keeping the wireless interface in monitor mode, we will learn how to use it in managed mode and capture packets directed towards us. This can be done using a tool named netdiscover that collects information about the network to launch attacks.
NetdiscoverZenmap
This tool collects accurate information about the connected clients on a network and the router. It tells about the MAC addresses, IP, the operating systems, and more about the connected clients along with the manufacturer details of the router.
By knowing the details on IP addresses, we know which network we are in and check for a specific device.
The command for this is -
root@kali:~# netdiscover -r 18.0.3.244 1/24
18.0.3.244 is the IP in the network
1/24 specifies the entire range
After you hit Enter, it will display the required output.