Wi-Fi Penetration
without VAT
Goals
This course is introduction to Wi-Fi security testing and is meant for engineers that requires theoretical and practical knowledge to conduct security assessment on corporate and other Wi-Fi networks. Absolvents will gain practical overview of attacks used by hackers, so they are able to perform security test of Wi-Fi infrastructure on their own and improve its configuration and security posture.
Duration
2 days
Training format
Trainings normally takes place in ALEF Training Center in Prague (onsite, or ILT), but there is possibility to conduct training on customer site if all prerequisites are met. Training is built in blocks, where shorter theoretical parts are followed with practical exercises. ILT: Instructor Led- Training - this type of training is possible in presence mode only
Requirements
- Basic understanding of IT networking, especially regarding LAN and IP networks and security of network infrastructure.
- Basic Linux and bash commands knowledge.
- Knowledge of basic Wi-Fi configuration.
- English on technical document understanding level. Adequate knowledge equivalents: Cisco course CCNA, course CompTIA Network+, or Security+.
Contents
Introduction
- Course outline, schedule
- Lab environment setup and overview, legal awareness sign-off Technology overview
- Networking basics (OSI and TCP/IP models basics)
- Wi-Fi technology in nutshell (wave, band, channel, signal strength, BSSID/SSID/ESSID, standards, encryption, protocols)
- Wi-Fi adapter for testing (Alfa Wi-Fi card and chipset, Kali Linux preparation, auto MAC address change, adapter modes, etc.) Reconnaissance
- Open Source Intelligence (OSINT) for Wi-Fi testing (technology lookup, WiGLE) Scanning & Enumeration
- Monitor mode and Wi-Fi sniffing (monitor mode configuration, Aircrack-ng suite, network monitoring, Wireshark)
- Hidden SSID discovery
- Wardriving (Kismet, rig setup, GPS and geolocation) Security Assessment
- Introduction and concepts
- WEP, it's vulnerabilities and cracking
- WPA/WPA2 PSK cracking (four way handshake sniffing/cracking, client-less attack, communication decryption)
- KRACKs attack
- Denial of Service attacks - de-authentication / radio jamming
- Wi-Fi Protected Setup (WPS) attacks (brute-force, Pixie-dust attack)
- WPA / WPA2 Enterprise attacks
- WPA3 attacks (Dragonblood) Evil twin and MITM attacks (social engineering with captive portal, KARMA attack, etc.)
- Concept, attack examples
- New trends with attacks using ESP8266 (practical) Post-assessment (theory mainly)
- Network endpoints discovery (NMAP) and segmentation best practices
- Post breach attacks
- Reporting and mitigations (eg. best practice suggestions, signal bleeding mitigation) Additional knowledge
- Tools (additional tools for testing automation and Wi-Fi monitoring)
- Proprietary hardware example: Wi-Fi PineApple, Nethunter Course end
Literature
Students will be provided with electronic version of presentation and additional study materials at the course end. All study materials are in English.
Technical equipment
Virtualized environment of Kali Linux operating system on customer owned laptop. There is also possibility to use virtualized environment of ALEF Training Center classroom computers. Vulnerable access points are part of classroom setup and will be provided by ALEF. Hardware needed for security testing will be provided to students as part of training and students can keep those even after course end. These will be:
- Wi-Fi USB card capable of 2,4 or 5 GHz band, with monitor and injection mode
- ESP8266 Wi-Fi controller or equivalent
Thank you for your interest.
We will do our best to answer and arrange a term.
Thank you for your interest.
We will answer your request or comment as soon as possible.
Thank you for your interest.
We will do our best to answer and arrange a term.
Training rooms
ALEF operates with training rooms match submarine's style to unexpected, unusual while still being smart and available to work in. We have several type of rooms for small groups and up to larger rooms with modern technical equipment and supportive technologies we provide.
We also deliver the high-quality multimedia sharing for efficient, effective virtual communication on a global scale. In the Competence Center is also available Spark Board. Cisco Sparkboard integrates the most common tools needed for team collaboration in physical meeting rooms into a single elegant device. It also combines white board, video or audio conference features.
All ALEF training centres operates with testing centre that provides full acess to take an exam and get certificate provided by our vendors. ALEF provides to our customer complete management and administration.
Training rooms – Bratislava
Team of lecturers
Our team - consisting of more than 50 instructors - offers a full range of technological knowledge in the field of routing, switching, security, collaboration and data centers. The expertise of instructors is evidenced by a range of top-level international certifications.
The uniqueness of our lecturers lies mainly in their extensive experience in connection with each project, allowing them to respond very flexibly to any question or suggestion from students, and to pass on their practical knowledge to the participants of these courses. Thanks to the synergy of the company’s reliable operation and many years of experience, we have been very flexible in responding to the changes prepared in the Cisco field, so we can guarantee you a wide range of certified courses that enable you and your colleagues to acquire the necessary know-how for future certification tests.
In addition to the certified trainings, we offer special courses that are focused primarily on the development of the necessary configuration skills.
OUR KNOWLEDGE IS YOUR FUTURE
