This is a lil demo of wireless wpa exploitation via the wps pin vulnerability.
the first set of tools used are aircrack-ng suit, WASH (wps vulnerabilty scanner), and reaver which brutes the wps pin.
the second tool set used is Wifite which encompasses the aircrack suit with dictonary and salt table attack methods as well as reavers wps pin exploit the nice thing with Wifite is that it is fully automated after it is deployed it will start with the wifi with the strongest signal and start running the many different ways of gaining access down to the lowest signaled network with out any input from the Pen tester after it has been started.

i have tested reaver on a few different networks with its stock cpu setup and it took 4 hours on the first 8 digit pin and 3 hours on the second. i have also used a gpu version that got into my network in 25 minutes.

there are a few ways of harding your wifi network if you find that it is vulnerable the easy less effective way is to simply use MAC authentication, diasbleing the wps option in the ui does not actually stop wps from transimitting or recieving, the second option would be to use a firmware that does not support wps like DD-WRT, the third option would be to find a router that does not have wps or a wps button which some of the newer routers today have started to do.

i will be updating this thread as i get time, i hope you enjoy it and are able to secure your network from others that might try to gain access to it through these methods.

Cat5 is always the safest setup for a network in the security and stablilty sense.

useful links
[ Register or Signin to view external links. ]
[ Register or Signin to view external links. ]
[ Register or Signin to view external links. ]