Description
Wireless LANs have been widely deployed in the past few years, simultaneously introducing an explosion of security issues and unique vulnerabilities, the majority of available wireless networks not being properly secured.
This one day course will bring you up to date with most advanced Wi-Fi security technologies, far beyond what you could expect from a Wi-Fi security 101 or workshop, providing detailed, up to date, in-depth informations and technics. Mixing both lecture and hands-on, it offers a practical approach of Wi-Fi (in)security, learning and practicing very latest Wi-Fi exploitation and penetration technics, as well as state of the art protection protocols and best practices for secure wireless networks deployement.
Topics
Wi-Fi insecurity
802.11 intrinsec weaknesses and basic tricks
WEP cracking fundamentals and technics (inc. fragmentation attack)
Applied malicious traffic injection
Pentesting a Wi-Fi network
Wi-Fi security
802.1x authentication
Wi-Fi Protected Access
IEEE 802.11i/WPA2
Wi-Fi Protected Setup
Secure 802.11 features and network architectures
Prerequisites
Ethernet and TCP/IP
802.11 network experience
Prerequisite material
Each student must bring his own laptop running his own Backtrack v1.0 Final CDROM with wireless traffic raw injection compatible adapter (Atheros based adapter strongly recommanded).
Instructor: Cédric Blancher
Cédric has spent the last 5 years working in network security field, performing audits and penetration tests. In 2004, he joined EADS Corporate Research Center in France to work on R&D; within the network security field, including a focus on wireless links. He is an active member of Rstack team and French Honeynet Project with studies on honeynet containment, honeypot farms and network traffic analysis. He also has delivered technical presentations (Eurosec, SSTIC, Cansecwest, Recon, Syscan, etc.) and written research papers and magazine articles (MISC, SSTIC, etc.) about network security. Cédric's website : http://sid.rstack.org/