Wi-Fi Question of the Day (QOTD)

XYZ Corporation has hired you to audit their WLAN network security measures. XYZ Corp currently has the following security measures in place:

1. All access points have non-default management interface passwords.
2. Access points have been configured not to broadcast their SSID in Beacons or to respond to Probe Request frames with null SSID values.
3. 128-bit WEP is in use by all access point and wireless client devices.
4. MAC filters are implemented on all access points to allow only authorized users.
5. Wireless Intrusion Prevention System (WIPS) with rogue detection and prevention.

Your task is to compromise XYZ Corp's wireless network by gaining access to sensitive data. How do you start your initial attack against the WLAN, given the above security measures?

You must select 1 answer

Locate the WLAN using inSSIDer. Compromise data security by using a narrowband RF jamming device against an access point. Use a WLAN client device to gain access to the wired network through the jammed access point.
Locate the WLAN and obtain the WEP key using a spectrum analyzer. Put the WEP key into a WLAN client device and access the wired network. Since the correct WEP key is being used, the WIPS will not detect your client as a rogue device.
Locate the WLAN and obtain the SSID using Kismet. Put the SSID into a protocol analyzer, and then decode frames looking for HTTP logins to a captive portal or an access point. Use the HTTP login to gain access to the wired network.
Locate the WLAN using a WLAN protocol analyzer. Gain access to sensitive data by attacking WEP security using a WEP cracking utility and putting the WEP key into the protocol analyzer.

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren

Working through the CWNP coursework and certifications helped not only to deepen my technical knowledge and understanding, but also it boosted my confidence. The hard work it took to earn my CWNE has been rewarding in so many ways.
-Ben

I want to commend you and all at CWNP for having a great organization. You really 'raise the bar' on knowing Wi-Fi well. I have learned a ton of information that is helping my job experience and personal career goals, because of my CWAP/CWDP/CWSP studies. Kudos to all at CWNP.
-Glenn