############################
##POST CONNECTION ATTACK BASICS##
############################
#All the attacks we carried out in the previous section can be done without knowing the name of the access point , that is without connecting to the desired network
#Up to this time we haveseen that how we can control the connection arround us , gather some information , sniff packets and crack WEP/WPA/WPA2 keys.
#In this session we shall have a look on more complicated attacks that can only be used after connecting to the desired Access Point.
#####################
#$$$Information Gathering$$$#
#####################
* the first thing in this session is gathering information about the connected clients to a network ,
->we saw that how we can use airodump-ng to see the AP's and associated clients with it ;
->Now that we are connected to a specific AP so we can gather more info about the clients connected
->To this networkto do this we can 3 programs starting with the simplest quickest one that is netdiscover ;
##############
##NETDISCOVER##
##############
Netdiscover is a program that can be used to discover connected clients on our connected network , it is simple but it will not show more detailed information about the clients , it shows IP,MAC,and sometimes the hardware manufacturer for the clients wirelesscard
code
>netdiscover -i [interfacename] -r [range]
ex: netdiscover -i wlan0mon -r 192.168.1.1/24
############
##AUTOSCAN##
############
autosan is another program that can be used to discover connected clients to our network . it can be used to gather more information than netdiscover and its easy to use as it has graphical user interface but its not fast like netdiscover.
you can download autoscan from the link :http://autoscan-network.com/download/
then go to the directory where u have downloaded it and run
./Autoscan*.sh
but there is a library that we need to add for the complete working on autoscan but it only works with a 32 bit architecture so using terminal add a 32 bit achitecture using the code:
>dpkg --add-architecture i386
>apt-get update
>apt-get install lib36:i386
then do to the directory in which u have downloaded autoscan and type in terminal
>./name of the installation file
ex:./autoscan
########
##NMAP##
########
it is a network discovery tool that can be used to discover more detailed information about the network and its clients
Zenmap is a GUI available for Nmap
1.ping scan :very quick-only show connected clients
2.Quick Scan :quick show mac and open ports
3.Quick scan plus :slower than the above 2.more detailed info will be available.
Comments
Post a Comment