Preventing How to Crack a Wi-Fi Network’s WPA Password with Reaver

Unanswered Question
Jan 11th, 2012

Hello,

Are Cisco AP's vulnerable?    

http://lifehacker.com/5873407/how-to-crack-a-wi+fi-networks-wpa-password-with-reaver

Is their a new IOS available to handle this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Leo Laohoo Wed, 01/11/2012 - 12:51

If you mean a dictionary attack to crack your password, then yes.  EVERY manufacturer is vulnerable.  If you practice good choice of passwords, then it will take time for Reaver to punch through.

George Stefanick Wed, 01/11/2012 - 13:04

WPA and WPA2 "PSK" are susceptible to this issue. If an attacker captures the 1 and 2 or the 2 and 3 part of the 4 way handshake they can then use tools like COWPATTY or REAVER to crack against a dictionary.

What is important, dont use a KEY that will likely be in a dictionary.

Leo Laohoo Wed, 01/11/2012 - 13:09
What is important, dont use a KEY that will likely be in a dictionary.

So I can't use passwords like "password" or "youcantcrackthis" can I? 

Leo Laohoo Wed, 01/11/2012 - 13:11

Follow the "rules":

1.  Mix upper and lower case;

2.  Use numbers;

3.  Use common sense:  Passwords like "love", "password", "admin", etc is the first few words to be tried by crackers. 

George Stefanick Wed, 01/11/2012 - 13:12

Love, really ? Who uses "LOVE" ... Only Leo ...

Surendra BG Wed, 01/11/2012 - 13:20

ha ha ha

Scott Fella Wed, 01/11/2012 - 13:22

Too funny:)

Thanks,

Scott Fella

Sent from my iPhone

Stephen Rodriguez Wed, 01/11/2012 - 15:47

Leo must have been watching Hackers again!

To piggy back on George:

Cisco AP's do not use WPS, so they should not be vulnerable to this type of attack.

The Linksys side of the house however, can/does use WPS.  you might want to hit the SMB forums and ask if they are aware of, and have a way to mitigate such attackes.

Steve

Leo Laohoo Wed, 01/11/2012 - 16:15
Leo must have been watching Hackers again!

LOL!

dazza_johnson Fri, 05/17/2013 - 04:50

You are partly right here George. Granted, Reaver 'only' cracks WPS PINs, but once it has done so you are 'given' the WPA/WPA2 PSK. In a round about way you are ultimately getting your goal, the WPA/WPA2 PSK.

A Reaver attack tutorial/demonstration using the OG150 is now available to download for free! WPA2 PSK WAS CRACKED IN 4 SECONDS!! Download the PDF tutorial from http://www.og150.com/tutorials.php.

Attack was demonstrated on a Linksys WAG54G2 router with v1.00.10 software.

Thanks

Darren

Abhishek Abhishek Fri, 05/17/2013 - 14:44

Hello,

As per your query i can suggest you the following solution-

Yes Ap's are vulnerable. You can use encryption, PSK,WPA.

Secure your SSID broadcast.

Mix characters and use numeric and alpha-numeric.

For more information you can refer to the link-

http://www.giac.org/paper/gsec/4094/securing-cisco-aironet-1200-access-point/106589

Hope this will help.

Actions

Login or Register to take actions

This Discussion

Posted January 11, 2012 at 10:58 AM
Stats:
Replies:12 Overall Rating:
Views:3857 Votes:0
Shares:0
Tags: wpa, ap, wpa2, wireless, crack
+

Related Content