File:OWASP Wireless Security 101.pdf

• Overview: Wireless security concepts

Remote access, Local network - encrypted and unencrypted

• Wireless attacks:

Rogue access point, MiTM, Session Hijacking, Radio monitoring, Session theft

• Review: Risks to remote workers

• Unencrypted wifi

• Rogue access point

• Passive connections

• Evil twin -> man-in-the-middle

• Unencrypted login forms

• Password reuse

• Insecure cookies -> session hijacking

• Game time: defensive techniques

• Demonstration: Wireless Man-in-the-Middle and Rogue AP