Security B-Sides London 2015

3rd of June 2015
ILEC Conference Centre 47 Lillie Road, London, SW6 1UD
Back To Schedule
Wednesday, June 3 • 3:15pm - 4:00pm
Introducing wifiphisher, a tool for automated WiFi phishing attacks

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

WiFi networks are commonly plagued by two serious issues: i) management frames can be easily forged and ii) wireless devices tend to automatically connect to the Access Point with the best signal. The Evil Twin and Karma attacks exploit the above issues, allowing attackers to perform man-in-the-middle and phishing attacks.

This presentation will introduce wifiphisher (https://github.com/sophron/wifiphisher), an open-source tool that automates the process of launching WiFi phishing attacks. Wifiphisher comes with a set of community-built templates for different phishing scenarios.

The presentation will explain in detail how WiFi phishing attacks work. It will also explain the reasons behind the success rate of these attacks, showing how different Operating Systems (and users in different environments) react during these attacks. Finally, countermeasures will be discussed that could limit the exposure to such attacks for individuals and organizations.


George Chatzisofroniou

George Chatzisofroniou (@_sophron) is a security engineer at CENSUS S.A. His research interests include cryptography, WiFi hacking, web security and network security. He is the lead developer of wifiphisher, an open-source phishing tool that recently caught the attention of the wireless... Read More →

Wednesday June 3, 2015 3:15pm - 4:00pm BST
a. Track 1