Chapter 7 - Wireless Network Hacking Flashcards

1
Q

Modulation type: OFDM

A

Orthogonal Frequency-Division Multiplexing (OFDM) - carries waves in various channels (think cable tv)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Modulation type: DSSS

A

Direct-Sequence Spread Spectrum (DSSS) - Combines all available waveforms into a single purpose.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

802.11 Series

A

Defines the standards for wireless networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

802.15.1

A

Bluetooth Standards

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

802.15.4

A

Zigbee - Low power, low data rate, close proximity ad-hoc networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

802.16

A

WiMAX - broadband wireless metropolitan area networks. 40 Mbps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Wireless Standard - 802.11a

A

Mbps - 54 Frequency - 5 GHz Modulation Type: OFDM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Wireless Standard - 802.11b

A

Mbps - 11 Frequency - 2.4 GHz Modulation Type: DSSS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Wireless Standard - 802.11d

A

Mbps - Variation of a & b. Frequency - Global Use

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Wireless Standard - 802.11e

A

Mbps - QoS Initiative Frequency - Data and Voice

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Wireless Standard - 802.11g

A

Mbps - 54 Frequency - 2.4 GHz. Modulation Type: OFDM and DSSS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Wireless Standard - 802.11i

A

Mbps - WPA/WPA2 Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Wireless Standard - 802.11n

A

Mbps - 100+ Frequency: 2.4 - 5. Modulation Type: OFDM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Wireless Standard - 802.11ac

A

Mbps - 1000 Frequency: 5 GHz Modulation Type: QAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Orthogonal Frequency - Division Multiplexing (OFDM)

A

Carries waves in various channels

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Direct-Sequence Spread Spectrum (DSSS)

A

Combines all available waveforms into a single purpose.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Basic Service Set Identifier (BSSID)

A

MAC address of wireless access point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Three types of Authentication are:

A

Open System - No authentication Shared Key Authentication - authentication through shared key (pw) Centralized Authentication - Authentication through something like RADIUS

19
Q

Assocation vs Authentication

A

Association is the act of connecting; Authentication is the act of identifying the client.

20
Q

Spectrum Analyzer

A

Verifies wireless quality, detects rogue access points and detects attacks

21
Q

Directional Antenna

A

Signals in one direction; Yagi antenna is a type

22
Q

Omnidirectional Antenna

A

Signals in all directions

23
Q

WEP

A

Wired Equivalent Privacy - Encryption: RC4. IV Size: 24 bits. Key Length: 40/104. Integrity Check: CRC-32

24
Q

WPA

A

Wi-Fi Protected Access - Encryption: RC4 + TKIP IV Size: 48 bits. Key Length: 128 bits. Integrity Check: Michael/CRC-32

25
WPA2
Encryption: AES-CCMP IV Size: 48 bits Key Length: 128-bits Integrity Check: CBC-MAC (CCMP)
26
WPA2 Enterprise vs WPA2 Personal
Enterprise: Can tie an EAP or RADIUS server into authentication. Personal: Uses a pre-shared key to authenticate.
27
Message Integrity Code (MIC)
Hashes for CCMP to protect integrity.
28
Cipher Block Chaining Message Authentication Code (CBC-MAC)
Integrity process of WPA2
29
WIGLE
Tool for network discovery that can map for wireless networks
30
NetStumbler
Tool for network discovery
31
Kismet
Wireless packet analyzer/sniffer that can be used for discovery. Works passively and can detect access points.
32
NetSurveyor
Tool for Windows that does network discovery
33
pcap vs libcap
pcap - driver library for Windows libcap - Drivery library for Linux
34
Rogue Access point
Places an access point controlled by an attacker
35
Evil Twin
Rogue AP with a SSID similar to the name of a popular network
36
Honeyspot
Fakinga well known hotspot with a rogue AP
37
Ad Hoc Connection Attack
Connecting directly to another phone via ad-hoc network. User must accept connection
38
Aircrack-ng
Sniffer, detector, traffic analysis tool and password cracker. Uses Dictionary attacks for WPA and WPA2.
39
Cain & Abel
Sniffs packets and cracks passwords. Relies on Statistical measures and the PTW technique to break WEP
40
KisMAC
MacOS tool to brute force WEP or WPA passwords
41
KRACK
Key Installation Attack (KRACK) - Method for cracking WPA. Replay attack that uses third handshake of another device's session.
42
OmniPeek
Provides data like Wireshark in addition to network activity and monitoring.
43
AirMagnet WiFi Analyzer Pro
Sniffer, traffic analyzer and network-auditing suite
44
WiFi Pilot
Wireless sniffer