{"id":97869,"date":"2021-07-07T09:00:42","date_gmt":"2021-07-07T03:30:42","guid":{"rendered":"https:\/\/data-flair.training\/blogs\/?p=97869"},"modified":"2021-07-03T18:10:57","modified_gmt":"2021-07-03T12:40:57","slug":"pre-connection-attacks","status":"publish","type":"post","link":"https:\/\/data-flair.training\/blogs\/pre-connection-attacks\/","title":{"rendered":"Pre-connection Attacks | Ethical Hacking"},"content":{"rendered":"

Interconnection of two or more devices that share all resources creates a network. The devices may share physical connections or wireless connections. The wireless connection comes from a router that uses the internet to function.<\/p>\n

These networks have become highly vulnerable in the last few years. This is mainly due to an increase in cybercrimes. To overcome this problem, companies go for network penetration testing.<\/p>\n

Pen testing is a method of identifying potential risks and vulnerabilities in a system or a network. It includes performing a real-time attack to see how strong the network security really is. The network testing is divided into three parts – Pre connection attack, gaining access, and post connection attack.<\/p>\n

We will look at all the parts briefly to understand their relevance in the process.<\/p>\n

Network Penetration Testing Parts<\/h3>\n

Pre-connection Attacks<\/h4>\n

This is the first step of network penetration testing which works on identifying networks around us. This includes details about all the connected devices in a network. Knowing these details helps in easy disconnection during the attack. Tools needed for pre-connection attacks are –<\/p>\n

1. A wifi adaptor in monitor mode
\n2. airodump-ng
\n3. aireplay-ng
\n4. An Operating System<\/p>\n

Gaining Access<\/h4>\n

This is the next step in network penetration testing that requires a network connection. This step allows the implementation of stronger attacks with reliable information sources. The networks without encryption are easier to get in and sniff unencrypted data. If there is encryption, we decrypt the information in all network types like WEP\/WPA\/WPA2.<\/p>\n

Post-connection attacks<\/h4>\n

This the last step in network penetration testing. After we get access to the network and the information, we start placing bugs. We break in through the network to get everything we need. We can also place malware, virus, and more in it to test how the security reacts to it. Netdiscover and Zetmap are the two famous tools used in this process.<\/p>\n

Steps in Pre-connection Attack<\/h3>\n

1. Wireless Interface in Monitor mode and Change MAC Address<\/h4>\n

This is the first step in the process of a pre-connection attack. The aim is to put wireless cards into monitor mode so that all packets in the network are audible.<\/p>\n

The wireless devices have \u201cmanaged\u201d mode by default allowing access to packets with our device’s MAC address as the destination.<\/p>\n

To make it simple, packets directed to your personal machine are the only ones you can access. But the entire point is to capture all packets within our range even if they don’t have our MAC address. This is possible by changing the device’s setting to Monitor mode.<\/p>\n

Use iwconfig to get access to wireless interfaces. You will see that it is in Managed mode. Change it using the following command.<\/p>\n