17.CAFFE LATTE ATTACK:

    In the Honeypot attacks , we notice that clients will continuously probe for SSIDs they have
connected to previously. If the client had connected to an access point using WEP, operati ng
systems such as Windows, cache and store the WEP key. The next ti me the client connects to
the same access point, the Windows wireless confi gurati on manager automati cally uses the
stored key.
                                                  The Caffe Latte attack is a WEP att ack which allows a hacker
to retrieve the WEP key of the authorized network, using just the client. The attack does not
require the client to be anywhere close to the authorized WEP network. It can crack the WEP
key using just the isolated client.
          In this  exercise, we will retreive the WEP key of a network from a client using the Caffe
Latte attack.


CONDUCTING THE CAFFE LATTE ATTACK:

 Follow these instructi ons to get started:

STEP 1:
           Let us fi rst set up our legiti mate access point with WEP for the network Wireless Lab
with the key ABCDEFABCDEFABCDEF12 in Hex:

 


 STEP 2:

Let us connect our client to it and ensure that the connection is successful using airodump-ng  as shown next:


STEP 3:

Let us unplug the access point and ensure the client is in the un-associated stage
and searching for the WEP network Wireless Lab:


STEP 4:

 Now  use  airbase-ng  to bring up an access point with Wireless Lab as the SSID
with the parameters shown next:


STEP 5:

 As soon as the client connects to this access point,  airbase-ng  starts the CaFFe-
Latte attack as shown:


                                                     STEP 6:
             We now start  airodump-ng  to collect the data packets from this access point only,
as we did before in the WEP-cracking case:

                                                      STEP 7:
   We also start  aircrack-ng  as in the WEP-cracking   to begin
the cracking process. The command line would be  aircrack-ng filename  where
filename is the name of the file created by  airodump-ng :
                  
                                                     STEP 8:
 Once we have enough WEP encrypted packets,  aircrack-ng  succeeds in cracking
the key as shown next:


 THANKS FOLKS....

Comments

  1. abc28 April 2013 at 08:44

    Good post you should try have a look at my website that is:

    Ethical Hacking Articles®

    You may find it in your best and informative.

    ReplyDelete
  2. Unknown29 April 2013 at 09:38

    Thanks Rehan..Just Now Got Up With Your Blog...You Hav Got Too Good posts There..

    ReplyDelete

Post a Comment

Popular posts from this blog

Image
9. SQL Injection: A Step-by-Step Tutorial   SQL injection is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. It is an instance of a more general class of vulnerabilities that can occur whenever one programming or scripting language is embedded inside another. SQL injection attacks are also known as SQL insertion attacks. Step-by-Step tutorial for SQL Injection Step 1:  Find a website that is vulnerable to the attack. This is the first step in SQLi and like every other hack attack is the most time consuming, and is the only time consuming step. Once you get through this, rest is a cake-walk. Now, let us all know what kind of pages are vulnerable to this attack. We are providing you wit
Read more
Image
10.XSS ATTACKS What is XSS? Cross Site Scripting also known as XSS , is one of the most common web appliction vulnerability that allows an attacker to run his own client side scripts(especially Javascript) into web pages viewed by other users. In a typical XSS attack, a hacker inject his malicious javascript code in the legitimate website . When a user visit the infected or a specially-crafted link , it will execute the malicious javascript. A successfully exploited XSS vulnerability will allow attackers to do phishing attacks, steal accounts and even worms.  Example : Let us imagine, a hacker has discovered XSS vulnerability in Gmail and inject malicious script. When a user visit the site, it will execute the malicious script. The malicious code can be used to redirect users to fake gmail page or capture cookies. Using this stolen cookies, he can login into your account and change password. It will be helpful for understanding XSS , if you have the following prerequisite:
Read more
Image
3.GENERAL INTRO ABOUT VIRUSES A  computer virus  is a  computer program  that can replicate itself  and spread from one computer to another. The term "virus" is also commonly, but erroneously, used to refer to other types of malware , including but not limited to  adware  and  spyware  programs that do not have a reproductive ability. what are types of virus programs?    Virus programs The  Creeper virus  was first detected on  ARPANET , the forerunner of the  Internet , in the early 1970s.Creeper was an experimental self-replicating program written by Bob Thomas at  BBN Technologies  in 1971.Creeper used the ARPANET to infect DEC  PDP-10  computers running the  TENEX operating system .Creeper gained access via the ARPANET and copied itself to the remote system where the message, "I'm the creeper, catch me if you can!" was displayed. The  Reaper  program was created to delete Creeper. A program called " Elk Cloner " was the first p
Read more