On Monday, security researcher Mathy Vanhoef disclosed a new vulnerability in the WPA/WPA2 four-way handshake, which has been branded KRACK. The attack is targeted and sophisticated, and it results in decrypting a TKIP or CCMP/AES encrypted session without knowledge of the PTK. WPA/WPA2-Personal and WPA/WPA2-Enterprise networks are vulnerable. The attack takes advantage of client sideContinue reading “Mitigating the KRACK in WPA2 with WIPS”
Author Archives: Jim Vajda
macOS Wi-Fi Roaming
One of the nice things about Intel wireless chipsets is that the drivers expose a lot of controls to help tune the chipset’s operation. One of my favorite of these controls is “Preferred Band,” which I usually adjust to instruct the chipset to prefer the 5 GHz band over the 2.4 GHz band. There areContinue reading “macOS Wi-Fi Roaming”
Splunking Wi-Fi DFS Events
One aspect of wireless networking that I’ve always struggled with is visibility into DFS events. Usually I catch them by chance by noticing two nearby AP’s on a site map using the same non-DFS channel, or maybe by casually looking through logs, but I’ve never felt like I had the reporting and alerting that should be inContinue reading “Splunking Wi-Fi DFS Events”
Frame by Frame 