Topic / Sector
DAY 1 OUT OF 4 DAYS TRAINING COURSE
If you want to learn how to understand and compromise modern WiFi networks, this is your course.
Learning modern Wi-Fi hacking can be a pain. Several new advances in WiFi security have been released, along with some new attacks. But, public literature still has lots of outdated material for technologies we rarely see deployed in the real world anymore. Numerous tools overly rely on automation, and leave you wondering when they don't work, because neither the fundamentals nor underlying attack is understood. Even worse, some popular attacks will rarely if ever work in the real world.
If you want to really understand what's going on, and master the attacks in such a way that you can vary them when you encounter real world complexities, this course will teach you what you need to know.
This course is highly practical, with concepts taught through theory delivered while your hands are on the keyboard, and semi-self-directed practicals at the end of each section to reinforce the learning. The course is hosted in a "WiFi in the cloud" environment we invented several years ago, which means no more fiddling with faulty hardware or turning the classroom into a microwave.
- How Wi-Fi hacking fits into wider attack or defence objectives
- Important physical and low-level RF concepts and how to reason through/debug strange situations
- Understanding how monitor mode works, when to use or not use it, and practical examples of what to do with collected frames or data
- Grokking the WPA2 4-way handshake and the numerous ways of recovering PSKs and what do with them
- First looks at attacking WPA3's Dragonfly handshake with downgrades
- Grokking EAP & EAP vulnerabilities relating to certificate validation, tunnelled mode key derivation and how to practically attack them with downgrades, relays and manipulating state