WLAN security
Tools
If you are interested in first gathering statistical and technical data for the WiFi network, you will find some familiar programs such as Wireshark, Zenmap, and Angry IP Scanner (in Wifislax | Network-Tools). Iptraf-ng and Net Activity Viewer are also found in this category.
Wifislax also comes with a considerable number of programs that support attacks on access points and client computers or that sniff passwords and access restrictions, usually achieved by using a variety of attack methods such as man-in-the-middle or dictionary attacks. Ettercap also is very powerful sniffing software, capable of sniffing passwords or logging traffic in switched networks.
Ghost Phisher is a no less safety-relevant program that allows you to offer spoofed services (DHCP, DNS, HTTP) via an imaginary access point. Ghost Phisher thus allows administrators to set up a honeypot to distract attackers from actual potential targets.
Applications that are not specifically designed for wireless networks, but also available in the Network-Tools menu, include CookieMonster (for editing cookies), Hydra (password cracker), or Hping (primarily for testing firewalls).
Wireless Security
To reveal the vulnerabilities of a wireless network reliably, Wifislax offers a plethora of programs that simulate attacks of various kinds in the Suite aircrack-ng and Wireless submenus of Wifislax. The individual programs in the Aircrack suite are command-line tools that accept a wide range of call parameters.
Wifislax simply opens a terminal and calls the appropriate program with the Help function, so you see the complete list of parameters in each case. Thanks to two scripts in the menu, you can use the program suite conveniently in a question-and-answer style, but this is only useful for users with knowledge of Spanish, because all the prompts are exclusively in the Spanish language.
Besides several programs for checking the security of networks protected by the WEP standard, the Wireless menu primarily contains software that supports the latest WPA and WPA2 specifications. Here, you can check whether the existing access restrictions in the form of passwords and keys are sufficiently secure (Figure 3).
Wifislax also provides plenty of coverage for the relatively new WPS (WiFi Protected Setup) standard, which suffers from significant vulnerabilities. For example, it is no problem with PIN-based WPS authentication to decrypt the PIN within a few hours, like legacy WEP protection mechanisms. The attacker can recover not only the PIN number, but also the key used on the WLAN. This explains why the Wifislax developers have grouped various pieces of software for WPS testing (e.g., WPSCrackGUI in Figure 4) in the Wpa wps submenu.
In the Decrypters submenu, you will find some proprietary tools that rely on dictionary attacks to determine the access credentials of some routers, as configured by DSL providers. Because these scripts almost exclusively target providers headquartered in Spain and their equipment, their utility value is low in other countries.
Forensics
If you want to perform a detailed data analysis of the Internet use of a client computer, you can use the Dumpzilla tool provided especially for this purpose in the Forensics submenu. It extracts a full set of information from the logfiles of Firefox, Iceweasel, and SeaMonkey, including stored cookies, passwords, add-ons, downloads, and website history. Again, this program runs in a terminal, listing its comprehensive set of parameters in English.
« Previous 1 2 3 Next »
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
Subscribe to our Linux Newsletters
Find Linux and Open Source Jobs
Subscribe to our ADMIN Newsletters
Support Our Work
Linux Magazine content is made possible with support from readers like you. Please consider contributing when you’ve found an article to be beneficial.
News
-
Gnome 48 Debuts New Audio Player
To date, the audio player found within the Gnome desktop has been meh at best, but with the upcoming release that all changes.
-
Plasma 6.3 Ready for Public Beta Testing
Plasma 6.3 will ship with KDE Gear 24.12.1 and KDE Frameworks 6.10, along with some new and exciting features.
-
Budgie 10.10 Scheduled for Q1 2025 with a Surprising Desktop Update
If Budgie is your desktop environment of choice, 2025 is going to be a great year for you.
-
Firefox 134 Offers Improvements for Linux Version
Fans of Linux and Firefox rejoice, as there's a new version available that includes some handy updates.
-
Serpent OS Arrives with a New Alpha Release
After months of silence, Ikey Doherty has released a new alpha for his Serpent OS.
-
HashiCorp Cofounder Unveils Ghostty, a Linux Terminal App
Ghostty is a new Linux terminal app that's fast, feature-rich, and offers a platform-native GUI while remaining cross-platform.
-
Fedora Asahi Remix 41 Available for Apple Silicon
If you have an Apple Silicon Mac and you're hoping to install Fedora, you're in luck because the latest release supports the M1 and M2 chips.
-
Systemd Fixes Bug While Facing New Challenger in GNU Shepherd
The systemd developers have fixed a really nasty bug amid the release of the new GNU Shepherd init system.
-
AlmaLinux 10.0 Beta Released
The AlmaLinux OS Foundation has announced the availability of AlmaLinux 10.0 Beta ("Purple Lion") for all supported devices with significant changes.
-
Gnome 47.2 Now Available
Gnome 47.2 is now available for general use but don't expect much in the way of newness, as this is all about improvements and bug fixes.