Explore three novel security-related design flaws in Wi-Fi and various widespread implementation flaws in this 37-minute Black Hat conference talk. Learn how adversaries can exploit these vulnerabilities to inject packets or exfiltrate selected frames, with a demonstration on using packet injection to bypass router NAT and connect to internal devices. Delve into the history of Wi-Fi security, aggregation techniques, and attack scenarios. Understand the intricacies of how fragmentation works, its design flaws, and aggregation design flaws. Examine implementation flaws, cloaked AMSDO, and other vulnerabilities in Wi-Fi systems. Gain valuable insights from security researcher Mathy Vanhoef on protecting Wi-Fi networks from these "FragAttacks."
FragAttacks - Breaking Wi-Fi through Fragmentation and Aggregation
Overview
Syllabus
Introduction
History of WiFi Security
Aggregation
Attack Scenario
Demonstration
How it works
How fragmentation works
Fragmentation design flaw
Aggregation design flaw
Implementation flaws
CloakedAMSD
Other flaws
Taught by
Black Hat
Related Courses
-
FragAttacks - Aggregation and Fragmentation Flaws in Wi-Fi
-
WiFuzz - Detecting and Exploiting Logical Flaws in the Wi-Fi Cryptographic Handshake
-
Wi-Fi Brokering
-
Sweet Dreams - Abusing Sleep Mode to Break Wi-Fi Encryption and Disrupt WPA2/3 Networks
-
Dragonblood - Attacking the Dragonfly Handshake of WPA3
-
BadMesher - New Attack Surfaces of Wi-Fi Mesh Network
