Wifiphisher by a Greek developer for penetration testing

Wifiphisher: A Greek security programmer has released a tool that can make password access from a WiFi network easier. How; Let's look at the tool from scratch.Wifiphisher

The Wifiphisher is a security tool that quickly locates automated phishing attacks against WPA networks in order to gain the secret passphrase. It is a tool of social engineering attacks that unlike other methods that do not include any brute forcing. It's an easy way to get WPA passwords.

The Wifiphisher works with Kali Linux and is distributed under MIT license.Wifiphisher 1

From the victim's side, the attack is in three phases:

  • The victim stops connecting to his or her access point. The Wifiphisher approaches all devices connected to a wifi by sending deauth packets to the client from the access point, from the access point to the client, as well as the transmission address.
  • The victim is associated with a malicious access point. Wifiphisher "smells" the router login page and copies the target access point settings. It then creates a malicious wireless access point that targets the target page. It also sets up a NAT / DHCP server and forwards the correct ports. As a result, due to interference, customers will begin to connect to the malicious access point. After this phase, the victim is MiTMed (man-in-the-middle).
  • The victim is led to a realistic router settings page. The wifiphisher uses a minimal web server that responds to HTTP and HTTPS requests. Once the victim requests a page on the Internet, the wifiphisher will respond with a realistic fake page asking for WPA password confirmation due to an upgrade of the firmware router.

Wifiphisher 2The tool developer is the George Hatzisofroniou and is intended for penetration testing purposes.

Registration in iGuRu.gr via Email

Enter your email to subscribe to the email notification service for new posts.

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News iGuRu.gr at Google news