How to Defend Against WiFi Attacks and WiFi Pineapples
Вставка
- Опубліковано 8 чер 2024
- On this episode of HakByte, @AlexLynd demonstrates how you can detect and stop WiFi Pineapples that are running KARMA attacks and hosting malicious WiFi networks. This demonstration uses a simple Python tool that profiles rogue access points, and uses deauthentication to prevent victims from connecting to an evil AP.
-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆
Buy a WiFi Pineapple: shop.hak5.org
WiFi Pineapple Detector: github.com/AlexLynd/WiFi-Pine...
Running KARMA attacks on a Pineapple: • Create Rogue Networks ...
Alex Lynd's Twitter: / alexlynd
Alex Lynd's GitHub: github.com/AlexLynd
Alex Lynd's website: alexlynd.com
-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆
Chapters:
Intro @AlexLynd 00:00
What are KARMA Attacks? 00:20
How Can We Detect & Prevent KARMA? 00:56
Tool's You'll Need 01:24
How to Detect WiFi Pineapples 01:32
Installing Dependencies 03:43
Enabling Monitor Mode 04:51
Starting the Detector 06:35
Spotting Rogue Access Points 08:13
Defending Against Attacks w/ Deauthing 08:43
Implications & Limitations 09:40
Outro 10:25
-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆
Our Site → www.hak5.org
Shop → hakshop.myshopify.com/
Subscribe → ua-cam.com/users/Hak5Darr...
Support → / threatwire
Contact Us → / hak5
-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆-----☆
____________________________________________
Founded in 2005, Hak5's mission is to advance the InfoSec industry. We do this through our award winning educational podcasts, leading pentest gear, and inclusive community - where all hackers belong. - Наука та технологія
yes more defense security stuff. I am trying to gain knowledge to get into this space. Many more job openings for blue team than pen testing. Thanks!
Thank you for the content. Your tempo and vocal intonation is really awesome. Excellent job on the tool
What happens if it sees a real AP sending multiple SSIDs (corporate and guest network for example)?
I have no more doubts. Շնորհակալություն եմ հայտնում եղբորս, աչքերս բաց են
good work - easy to follow and understand sraight to the point
This guy has to give us courses please!!!!!!! You are amazing!!!!!
But the pineapple has an update that randomizes the Mac Address now. So technically this won't work anymore.
Is it possible to keep a tool running that is set to constantly detect attacks that things like the Pineapple would be running?
how do i defend against someone possibly using a pineapple or malicious item like this backdooring my home's router network on a normal windows home laptop? I just want to fix my connections back to normal.
This was awesome content, thanks
Great video. Emulating a probe request for a fake access point name to see if something emulated it .... Wonder if there is a name for that?
Lol how are you verified with not even 300 subscribers.. 👀 maybe has something to with the obvious fact that your a hacker lol and very intelligent and most likely capable.. Lol.. That's crazy 😂🙏👌
What do you make of very nearby SSIDs with the first six digits of your own routers MAC? or plugging in a brand new router and it broadcasts SSID on sticker but with an unknown MAC, then 3 minuets later starts broadcasting the correct MAC and the fake one disappears?
What dongle where you using, i like the small form factor.
And what happens when the attacker simply spoofs the "hardware ID" for each broadcasted AP? Then your detection fails right out of the gate.
Hey Daniel! I cover this scenario at the end of my video; It's still possible to detect KARMA attacks / rogue AP's if you beacon out pseudorandom SSID's and see if the Pineapple creates networks in response. Let me know if you want me to demonstrate this!
- Alex
@@hak5 wonder if this could be made to run on a small MCU?
@@timballam3675 I don't think it is capable of monitor mode so probably not
OK what adaptor are you using?
banger content as always. or should i say, smanger. gods work boiz.
Did this couple take over Hak5?
That being said.. Please make a video showing how to detect deauth packets being sent to your router or wifi signal.
How can I buy on your website?
There's no way to install this tools I've tries everything termcolor doesn't work or even exist anymore. I've literally tried everything
Please show us how to man in the middle and present our custom page when a client request a specific page (like Beef does) on the MK7
DNS spoofing on the Pineapple? That would be dope!
@@ministrodajuventude yes should be doable since we have the Evil Portal. Instead of showing the portal always, it should only present the page when a page request matches our definition. I guess having a client browse on the MK7 might still be an issue since I read it provides low bandwidth, but the new 2.0 might just improve that bit
This has been achieved.
More defensive videos interesting, can learn how to recognise and mitigate as well as protect own network.
Q
Using public WiFi = Toast
I would love more defensive stuff please!
blacklist = pp_analysis(info_list, pp, pisavar_method) that's interesting, im trying to figure out how you determine it, ok deauth mac address, smart
Please more defensive videos. Also how to clean systemd virus malware trojan. My neighbour also injected malicious script that elevates root permissions and sending my network ip via avahi deamon. Journal full of comm="systemd" exe="/usr/lib/systemd/systemd" hostname =? addr=? terminal=? res...
Great video. Also you're so cute!
Yes please on more defensive content.
Sadly deauthenication doesn't work on my devices somehow.
My phone warns me that the network is suspicious if it's trying to connect to a pineapple AP. Also IoT devices won't got tricked.
All in all never made a successful attack in my own environment, which is kinda disappointing especially for a $100 device
Interesting, what iot devices did you use, what models? What phone did you use?
@@jakobro1794 Samsung Note 10 Lite with Android 12. Different phones like iPhones are not working either.
IoT Devices: Shelly Light Bulbs, Smart Plugs, etc... ESP8266 based Devices.
Python2?
Python2 is dead!!!
Do your like siracha
Hello
Just Turn Your WIFI Off it is an amazing hack.