i already passed cwna, preparing for the cwsp but i have a question that still no one has answered me in a direct way.
in the cwna official guide it is mentioned that shared key authentication is even less secure than open authentication.
and theoratically the talk about how sniffing the challenge transmitted by the AP in plain text and the response could lead to knowing easily the WEP key.
plz can anyone explain how to do it practically???!!!
the reponse from the client is an encrypted version of the clear text sent. So all you have to do then is reverse engineer the two of them to come up with the wep phrase. In Open you never see anything other then the encrypted data payload.