I am looking to carry out a hacking project that revolves around exploiting the ‘Hole 196’ security loophole in WPA2 encrypted wireless networks. The exploit requires the attacker to encrypt and send broadcast packets with the one way Group Transient Key that is shared by the AP.
This will be the first hacking project I have undertaken so I am unfamiliar with most of the tools on hand. Would anyone be able to recommend some packet crafting or other tools that may be suitable if there are any? If not how could I possibly go about doing this?
Below I have linked a paper that describes the ‘Hole 196’ attack in section ‘II’ for those who are unfamiliar.
Any help would be hugely appreciated!