Chapter 7 - Wireless Network Hacking Flashcards

1
Q

Modulation type: OFDM

A

Orthogonal Frequency-Division Multiplexing (OFDM) - carries waves in various channels (think cable tv)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Modulation type: DSSS

A

Direct-Sequence Spread Spectrum (DSSS) - Combines all available waveforms into a single purpose.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

802.11 Series

A

Defines the standards for wireless networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

802.15.1

A

Bluetooth Standards

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

802.15.4

A

Zigbee - Low power, low data rate, close proximity ad-hoc networks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

802.16

A

WiMAX - broadband wireless metropolitan area networks. 40 Mbps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Wireless Standard - 802.11a

A

Mbps - 54 Frequency - 5 GHz Modulation Type: OFDM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Wireless Standard - 802.11b

A

Mbps - 11 Frequency - 2.4 GHz Modulation Type: DSSS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Wireless Standard - 802.11d

A

Mbps - Variation of a & b. Frequency - Global Use

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Wireless Standard - 802.11e

A

Mbps - QoS Initiative Frequency - Data and Voice

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Wireless Standard - 802.11g

A

Mbps - 54 Frequency - 2.4 GHz. Modulation Type: OFDM and DSSS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Wireless Standard - 802.11i

A

Mbps - WPA/WPA2 Encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Wireless Standard - 802.11n

A

Mbps - 100+ Frequency: 2.4 - 5. Modulation Type: OFDM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Wireless Standard - 802.11ac

A

Mbps - 1000 Frequency: 5 GHz Modulation Type: QAM

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Orthogonal Frequency - Division Multiplexing (OFDM)

A

Carries waves in various channels

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Direct-Sequence Spread Spectrum (DSSS)

A

Combines all available waveforms into a single purpose.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Basic Service Set Identifier (BSSID)

A

MAC address of wireless access point.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Three types of Authentication are:

A

Open System - No authentication Shared Key Authentication - authentication through shared key (pw) Centralized Authentication - Authentication through something like RADIUS

19
Q

Assocation vs Authentication

A

Association is the act of connecting; Authentication is the act of identifying the client.

20
Q

Spectrum Analyzer

A

Verifies wireless quality, detects rogue access points and detects attacks

21
Q

Directional Antenna

A

Signals in one direction; Yagi antenna is a type

22
Q

Omnidirectional Antenna

A

Signals in all directions

23
Q

WEP

A

Wired Equivalent Privacy - Encryption: RC4. IV Size: 24 bits. Key Length: 40/104. Integrity Check: CRC-32

24
Q

WPA

A

Wi-Fi Protected Access - Encryption: RC4 + TKIP IV Size: 48 bits. Key Length: 128 bits. Integrity Check: Michael/CRC-32

25
Q

WPA2

A

Encryption: AES-CCMP IV Size: 48 bits Key Length: 128-bits Integrity Check: CBC-MAC (CCMP)

26
Q

WPA2 Enterprise vs WPA2 Personal

A

Enterprise: Can tie an EAP or RADIUS server into authentication. Personal: Uses a pre-shared key to authenticate.

27
Q

Message Integrity Code (MIC)

A

Hashes for CCMP to protect integrity.

28
Q

Cipher Block Chaining Message Authentication Code (CBC-MAC)

A

Integrity process of WPA2

29
Q

WIGLE

A

Tool for network discovery that can map for wireless networks

30
Q

NetStumbler

A

Tool for network discovery

31
Q

Kismet

A

Wireless packet analyzer/sniffer that can be used for discovery. Works passively and can detect access points.

32
Q

NetSurveyor

A

Tool for Windows that does network discovery

33
Q

pcap vs libcap

A

pcap - driver library for Windows libcap - Drivery library for Linux

34
Q

Rogue Access point

A

Places an access point controlled by an attacker

35
Q

Evil Twin

A

Rogue AP with a SSID similar to the name of a popular network

36
Q

Honeyspot

A

Fakinga well known hotspot with a rogue AP

37
Q

Ad Hoc Connection Attack

A

Connecting directly to another phone via ad-hoc network. User must accept connection

38
Q

Aircrack-ng

A

Sniffer, detector, traffic analysis tool and password cracker. Uses Dictionary attacks for WPA and WPA2.

39
Q

Cain & Abel

A

Sniffs packets and cracks passwords. Relies on Statistical measures and the PTW technique to break WEP

40
Q

KisMAC

A

MacOS tool to brute force WEP or WPA passwords

41
Q

KRACK

A

Key Installation Attack (KRACK) - Method for cracking WPA. Replay attack that uses third handshake of another device’s session.

42
Q

OmniPeek

A

Provides data like Wireshark in addition to network activity and monitoring.

43
Q

AirMagnet WiFi Analyzer Pro

A

Sniffer, traffic analyzer and network-auditing suite

44
Q

WiFi Pilot

A

Wireless sniffer