Wireless networks are common in enterprise environments, making them a prime target for penetration testers. Additionally, misconfigured wireless networks can be easily cracked, providing penetration testers with a great deal of valuable information about the network and its users. This article explores some of the most widely-used tools for different aspects of wireless network hacking.
Before attacking a wireless network, it is necessary to know that it exists. A few different tools provide network discovery functionality to help with identifying wireless networks and extracting useful traffic for use in an attack.
Kismet is one of the most famous Wi-Fi hacking tools available. It is a network sniffer capable of monitoring 802.11 wireless traffic as well as other wireless protocols, such as Bluetooth and Zigbee.
Kismet is available on all operating systems and can run using any Wi-Fi card that supports radio frequency monitoring mode (RFMON). It passively collects packets to identify both broadcasting and hidden wireless networks.
Download Kismet: https://www.kismetwireless.net/downloads/#kismet-release
KisMac, as its name suggests, is designed to be a Kismet clone available on macos. Like Kismet, KisMac performs passive network monitoring and can attempt to crack WEP and WPA keys using brute