Wi-Fi attacks and penetration testing
Goals
This course is introduction to Wi-Fi security testing and is meant for engineers that requires theoretical and practical knowledge to conduct security assessment on corporate and other Wi-Fi networks. Absolvents will gain practical overview of attacks used by hackers, so they are able to perform security test of Wi-Fi infrastructure on their own and improve its configuration and security posture.
Duration
2 days (8h/day)
Training format
Trainings normally takes place in ALEF Training Center in Prague (onsite, or ILT*), but there is possibility to conduct training on customer site if all prerequisites are met.
Training is built in blocks, where shorter theoretical parts are followed with practical exercises.
Requirements
- Basic understanding of IT networking, especially regarding LAN and IP networks and security of
network infrastructure.
- Basic Linux and bash commands knowledge.
- Knowledge of basic Wi-Fi configuration.
- English on technical document understanding level.
Adequate knowledge equivalents:
- Cisco course CCNA, course CompTIA Network+, or Security+.
Contents
Introduction:
- Course outline, schedule
- Lab environment setup and overview, legal awareness sign-off
Technology overview:
- Networking basics (OSI and TCP/IP models basics)
- Wi-Fi technology in nutshell (wave, band, channel, signal strength, BSSID/SSID/ESSID, standards, encryption, protocols)
- Wi-Fi adapter for testing (Wi-Fi card and chipset choosing, Kali Linux preparation, auto MAC address change, adapter modes, etc.)
Reconnaissance:
- Open-Source Intelligence (OSINT) for Wi-Fi testing (technology lookup, WiGLE)
- Scanning & Enumeration
- Monitor mode and Wi-Fi sniffing (monitor mode configuration, Aircrack-ng suite, network monitoring, Wireshark)
- Hidden SSID discovery
- Wardriving (Kismet, rig setup, GPS and geolocation)
Security Assessment:
- Introduction and concepts
- WEP, it's vulnerabilities and crackingWPA/WPA2 PSK cracking (four-way handshake sniffing/cracking, client-less attack, communication decryption)
- KRACKs attack
- Denial of Service attacks - de-authentication / radio jamming
- Wi-Fi Protected Setup (WPS) attacks (brute-force, Pixie-dust attack)
- WPA / WPA2 Enterprise attacks
- WPA3 attacks (Dragonblood)
Evil twin and MITM attacks (social engineering with captive portal, KARMA attack, etc.):
- Concept, attack examples
- New trends in attacks (e.g. using microcontrolers)
Post-assessment (theory mainly):
- Local network endpoints discovery (NMAP) and segmentation best practices
- Post breach attacks
- Reporting and mitigations (eg. best practice suggestions, signal bleeding mitigation)
Additional knowledge:
- Tools (additional tools for testing automation and Wi-Fi monitoring)
- Proprietary hardware example: Wi-Fi PineApple, Nethunter
Literature
Students will be provided with electronic version of presentation and additional study materials at the course end. All study materials are in English.
Technical equipment
Virtualized environment of Kali Linux operating system on customer owned laptop. There is also possibility to use virtualized environment of ALEF Training Center classroom computers. Vulnerable access points are part of classroom setup and will be provided by ALEF.
Hardware needed for security testing will be provided to students as part of training and students can keep those even after course end. These will be:
- Wi-Fi USB card capable of 2,4 or 5 GHz band, with monitor and injection mode
- ESP8266 Wi-Fi controller or equivalent
Thank you for your interest.
We will do our best to answer and arrange a term.
Thank you for your interest.
We will answer your request or comment as soon as possible.
Thank you for your interest.
We will do our best to answer and arrange a term.
Training rooms
ALEF operates with training rooms match submarine's style to unexpected, unusual while still being smart and available to work in. We have several type of rooms for small groups and up to larger rooms with modern technical equipment and supportive technologies we provide.
We also deliver the high-quality multimedia sharing for efficient, effective virtual communication on a global scale. In the Competence Center is also available Spark Board. Cisco Sparkboard integrates the most common tools needed for team collaboration in physical meeting rooms into a single elegant device. It also combines white board, video or audio conference features.
All ALEF training centres operates with testing centre that provides full acess to take an exam and get certificate provided by our vendors. ALEF provides to our customer complete management and administration.
Team of lecturers
Our team - consisting of more than 50 instructors - offers a full range of technological knowledge in the field of routing, switching, security, collaboration and data centers. The expertise of instructors is evidenced by a range of top-level international certifications.
The uniqueness of our lecturers lies mainly in their extensive experience in connection with each project, allowing them to respond very flexibly to any question or suggestion from students, and to pass on their practical knowledge to the participants of these courses. Thanks to the synergy of the company’s reliable operation and many years of experience, we have been very flexible in responding to the changes prepared in the Cisco field, so we can guarantee you a wide range of certified courses that enable you and your colleagues to acquire the necessary know-how for future certification tests.
In addition to the certified trainings, we offer special courses that are focused primarily on the development of the necessary configuration skills.
Karel Pouzar
Senior Solution Architect - Cloud
AWS Certified Solutions Architect – Professional, AWS Certified Security – Specialty, AWS Certified SysOps Administrator – Associate, AWS Authorized Instructor Champion Cisco CCIE R&S #20198, CCNP Ent, CCNP SP
Karel is a Senior Solution Architect for Cloud at Alef. He has long been involved in infrastructure and its virtualization in large networks and data centres of service providers. In recent years, he has been involved in the design and implementation of hybrid Cloud solutions.
He is an avid user and promoter of new technologies, which he capitalizes on as a Cloud Ambassador for the Expert Centre's Infrastructure Team. At the Alef Group, he is the lead trainer for AWS training, where he’s the AWS Authorised Instructor Champion.
Jan Kopřiva
Team lead CSIRT - incident response and offensive security
Multiple certifications & M.Sc. in Cyber security, Multiple certifications & B.Sc. in Education and teaching, Author of numerous security courses
Jan Kopřiva is the team lead of an incident response and offensive security team at ALEF Group and an Incident Handler with the renowned SANS Internet Storm Center. Jan started his career as a blue teamer, but slowly moved into offensive security as well. His current professional interests lie mainly in the areas of security, which traditionally fall within the purview of purple teams. He has authored multiple security courses as well as numerous research papers and articles focused on different aspects of cyber security and he regularly speaks at security conferences and other industry events.
Peter Frolo
Systems Engineer
CCSI# 35715, CCNP Enterprise, SD-WAN Specialist, Devnet Associate
Peter works at ALEF Zero as a systems engineer in the SPRS team. His job is mainly to design and implement network solutions from Cisco's Enterprise class portfolio, based on various Catalyst (9K, 8K) and ISR network elements. He specializes primarily in Software Defined Wide Area Network (SD-WAN) technology, in which Peter is a certified SD-WAN Implementation Specialist. He also participated in the first implementation of SD-WAN technology at ALEF. Peter also works as a certified Cisco instructor with many years of experience.
Jan Janovic
Team Leader, DC-NET
Double CCIE DC|R&S #55858, CCNP DevNet, CCSI #35493, AWS Solution Architect and Developer Associate
Honza is a Datacenter Networking Teamleader at Alef. Together with his team, he specializes in a variety of networking solutions, primarily built on the Cisco Nexus switch platform - traditional vPC architecture, VXLAN BGP EVPN factories, and Cisco ACI. He also focuses on analytical tools, programmability and the automation of all these solutions, as well as their integration with the public cloud. In 2020, he became the Alef Group's first holder of the new CCNP DevNet certification, and also received the DevNet500 award for being among the top 500 DevNet certified engineers worldwide. In 2021 he became the only Double CCIE holder in the ALEF group, and the first in the world to pass any new version of the CCIE exam following changes to Cisco's certification program in February 2020. Honza has logged more than 1,000 hours in the Czech Republic, Slovakia and Romania.
Jiří Šolc
Enterprise/Solution Architect
CCDA, CCNP Collaboration, AWS, ITIL, TOGAF, ArchiMate, IPMA
Jirka works at Alef as an Enterprise/Solution Architect, and is responsible for the comprehensive development of ICT solutions for key customers. He has over 10 years’ experience in technical, consulting and management practice. He has been involved in the design, implementation and management of a number of infrastructure, security, communications and digital transformation projects.
His specialties include the interconnection of the business and ICT worlds through Enterprise and Solution Architecture. This involves extensive communication with people in different roles across roles and organisational structures, the analysis of complex ICT environments, the preparation of projects including advocacy for their benefits, budgets, and interdependencies, and overall strategic ICT development planning. You will see him regularly speaking at conferences and workshops.
Filip Pávek
Senior Security Architect
CCNP Enterprise, CCNP Security, CCNA CyberOps, C|EH, CCSI #35271
Filip works at Alef as a Security Architect and is responsible for consulting, designing solutions, and leading security-technology focused projects. He gained his technical experience as a system engineer, first in Routing & Switching and then mainly in security. Filip is also a certified Cisco instructor, so you could meet him in your educational activities at our training centre. His passion for self-education and spreading technical awareness is also demonstrated by his having been a lecturer at Cisco Academy for over 10 years.
OUR KNOWLEDGE IS YOUR FUTURE