Cable Forum - View Single Post - General Virgin Media urges password change over hacking risk

Qtx · 27-06-2017, 15:30

EvilTwin networks have their uses but are a different kind of attack, but generally you don't use them to get a WPA2 password to crack. These days you may use a rogue access point as a way of social engineering someone to enter their router password, via the captive portal and asking for router password via a web page, like Pwnstar can do. The tools mentioned like aircrack, reaver/pixie are the same you would use on a computer rather than an AP. When they are used, no matter where, they are still not MITM attacks. Once connected to the rogue AP, then the SSL strip and such are the MITM attacks.

Even with MAC spoofing and all the other tricks, there are limitations and advances mean not all devices are fooled by rogue ap's now. Getting a client to send to a cloned MAC of a network it has connected before can be difficult. But my original post was getting the right terminology for each attack based on the thread being about WPA2 passwords. Throwing a web page on open network asking for the router password like pwnstar does is hit and miss and I would call social engineering rather than a MITM. . Throwing packets on a wifi frequency to capture IVS or WPA handshakes to crack is different, and certainly not MITM.

#IlovemyPineapple

27-06-2017, 15:30	#54
Qtx Inactive Join Date: May 2012 Location: Probably outside the M25 Services: Sky Fibre Unlimited 40/10 Posts: 3,473	Re: Virgin Media urges password change over hacking risk EvilTwin networks have their uses but are a different kind of attack, but generally you don't use them to get a WPA2 password to crack. These days you may use a rogue access point as a way of social engineering someone to enter their router password, via the captive portal and asking for router password via a web page, like Pwnstar can do. The tools mentioned like aircrack, reaver/pixie are the same you would use on a computer rather than an AP. When they are used, no matter where, they are still not MITM attacks. Once connected to the rogue AP, then the SSL strip and such are the MITM attacks. Even with MAC spoofing and all the other tricks, there are limitations and advances mean not all devices are fooled by rogue ap's now. Getting a client to send to a cloned MAC of a network it has connected before can be difficult. But my original post was getting the right terminology for each attack based on the thread being about WPA2 passwords. Throwing a web page on open network asking for the router password like pwnstar does is hit and miss and I would call social engineering rather than a MITM. . Throwing packets on a wifi frequency to capture IVS or WPA handshakes to crack is different, and certainly not MITM. #IlovemyPineapple Last edited by Qtx; 27-06-2017 at 15:38.