Penetration Testing for Wireless Networks and Wi-Fi Access Points
Gauge Your Exposure to Wi-Fi Threats
As evidenced in high-profile attacks carried out against major enterprise organizations, unmanaged or improperly secured wireless networks can serve as an initial point of entry for criminals seeking access to protected backend databases and other critical resources.
CORE IMPACT Pro’s wireless penetration testing capabilities enable you to assess your organization’s readiness against real-world attacks originating over Wi-Fi networks. With CORE IMPACT, you proactively replicate the actions of a would-be attacker to reveal exploitable weaknesses in your wireless and backend networks – gaining actionable data at each step for efficient and effective risk mitigation.
Wireless penetration testing capabilities in CORE IMPACT Pro include:
- Discovery of both known and unauthorized Wi-Fi networks and access points
- Information gathering on network strength, security protocols and connected devices
- Attack and penetration of networks encrypted with WEP, WPA-PSK and WPA2-PSK
- Automated traffic sniffing for finding streams of sensitive data
- Capabilities for joining cracked networks and testing backend systems
- Comprehensive reporting of wireless testing activities and findings
- Seamless pivoting between wireless, network, web application and endpoint tests, replicating multi-staged attacks that trace chains of vulnerabilities to sensitive backend data
With CORE IMPACT Pro, you can conduct automated testing across the widest array of threat vectors and gauge your organization’s exposure to advanced hacking and malware assaults in the most realistic, comprehensive manner of any product offered on the market today. And because IMPACT Pro is a commercial-grade software application, you can use it as frequently as necessary to assess your IT infrastructure in the face of evolving threats.
Identify and Profile Known and Unauthorized Wireless Networks
Many organizations have policies against unauthorized Wi-Fi networks. IMPACT Pro’s discovery capabilities allow users to identify both authorized networks and unauthorized points of access. It then profiles any networks discovered by analyzing signal and packet data to measure network strength, determine security protocols, and identify devices interacting with the involved network.
Crack WPA, WPA2 and WEP Wireless Encryption
CORE IMPACT Pro determines keys by taking advantage of known vulnerabilities in WEP-secured networks. The solution also assesses networks secured by WPA and WPA2 (using a Pre-Shared Key) via dictionary attacks that leverage information from sniffed authentication attempts.
Trace Attack Paths from Wireless Networks to Backend Data
Only CORE IMPACT Pro offers true multistaged penetration testing capabilities, allowing users to replicate attacks that can occur after the initial Wi-Fi network compromise. By integrating wireless assessments with web application, network and endpoint testing, CORE IMPACT reveals and documents paths of exposure to sensitive data residing on backend systems.
Share actionable data for efficient remediation
CORE IMPACT Pro generates reports of wireless networks discovered, client-to-access point relationships, and access point profile information. Reports also include information about which networks were tested against attacks, which where successfully compromised, and which weaknesses allowed the compromise.
