Wifiphisher: A Greek security developer released one tool who can make her acquisition passwords from a WiFi network easier. How; Let's look at the tool from the beginning.
The Wifiphisher is a security tool that quickly places automated attacks phishing against WPA networks in order to obtain the secret passphrase. This is a social attack tool engineering which unlike other methods does not involve any brute forcing. It is an easy way to obtain WPA passwords.
The Wifiphisher works with Kali Linux and is distributed under MIT license.
From the victim's side, the attack is in three phases:
- The victim stops connecting to his or her access point. The Wifiphisher approaches all devices connected to a wifi by sending deauth packets to the client from the access point, from the access point to the client, as well as the transmission address.
- The victim is associated with a malicious access point. Wifiphisher "sniffs" the webσελίδα router connection and copies the settings of the target access point. It then creates a malicious wireless access point modeled after the target's page. It also sets up a NAT/DHCP server and forwards the correct ports. Consequently, due to the interference, clients will start connecting to the malicious access point. After this phase, the victim is MiTMed (man-in-the-middle).
- The victim is led to a realistic router settings page. The wifiphisher uses a minimal web server that responds to HTTP and HTTPS requests. Once the victim requests a page on the Internet, the wifiphisher will respond with a realistic fake page asking for WPA password confirmation due to an upgrade of the firmware router.
The tool developer is the George Hatzisofroniou and is intended for penetration testing purposes.
theoretically does not work in wepwpa2;
paidia kalispera .. mporeite na mou peite pws 8a to tre3w ayto sto linux ??