Stealing wireless password with fake AP




Posts: 1

Joined: Thu Jul 19, 2012 8:32 am

Post Thu Jul 19, 2012 9:12 am

Stealing wireless password with fake AP

Hi everyone;

I have a question, and hope you can help

ESSID of my real AP is test
BSSID of my real AP: 1F:X:X:X:X:X
Password of my real AP: 12345678 (WPA2)

I have created a fake AP with ESSID test and BSSID 1F:X:X:X:X:X

  1. From my netbook, i first connected to my real AP and i can capture
  4-way handshake.
  2. Then i shut down real AP
  3. Then i open fake AP
  4. My netbook connected to fake AP.

However i can not capture 4-way handshake ? I really wonder why ? My fake
AP is same as real AP. So my netbook should send password to my fake AP ?

Shortly, i'm trying to steal passwords with fake APs and i can not do it.



Posts: 1134

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Sat Jul 21, 2012 3:16 pm

Re: Stealing wireless password with fake AP

Have you configured your fake AP with the WPA2 key? The client doesn't send the password in clear-text, so you're not going to capture any more than you would by capturing the four-way handshake with the legitimate AP.

The purpose of this type of setup would be to get the client to associate with your fake AP and then capture unencrypted network traffic, not obtain the WPA2 key.
The day you stop learning is the day you start becoming obsolete.


User avatar

Sr. Member
Sr. Member

Posts: 370

Joined: Sun Feb 26, 2012 8:07 am

Location: in your heart!

Post Thu Aug 02, 2012 3:09 pm

Re: Stealing wireless password with fake AP

u may get the  password's hash with it so its not useful try to do some other practices for example try to crack wpa2 with brute force and so on
Last edited by cyber.spirit on Thu Aug 02, 2012 3:11 pm, edited 1 time in total.
CEH - HackingDojo Shodan - CCNA - MCITP - Offensive Security WIFU - LPIC - MTCNA - SECURITY+


User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Mon Aug 06, 2012 9:57 am

Location: UK

Post Mon Aug 06, 2012 10:13 am

Re: Stealing wireless password with fake AP

There is also a pretty cool script written by g0tmi1k called fakeap that might be worth looking into...
| OSWP | eCPPT Silver and Gold | eWPT |

I'm an InterN0T'er

Return to Wireless

Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software