Steps:
️1: first scan the air for a target access point. Then create an access point using airbase-ng with the same name and channel of the target access point, hence Evil TWIN attack.
️2:The victim is now disconnected repeatedly from the original access point and as most modern system’s setting says… “Connect back to same ESSID (AP name) if disconnects”.
This also happens because when the victim disconnects from any access point it starts sending probe requests in the air with the name of the access point it connected to earlier. Hence BSSID isn’t a barrier, you just need ESSID to spoof the AP
3: Clients will now be connected to the Evil Twin access point and now client may start browsing Internet.
️4: Client will Receive a web administrator warning saying “Enter WPA password to download and upgrade the router firmware”
️5: The moment he/she enters the password, he/she will be redirected to a loading page and the password will be stored in the MySQL database of the attacker machine
0 comments:
Post a Comment