Exploitation Summary
EIP tracks 2 public exploits for CVE-2017-13077. PoCs published by mugheeskhan5.
AI-analyzed exploit summary This repository provides a functional proof-of-concept for CVE-2017-13077 (KRACK attack) by simulating a WPA2 4-way handshake and demonstrating the vulnerability in a controlled Docker environment. It includes scripts to capture and analyze EAPOL frames, as well as a demonstration of the KRACK attack using modified hostapd and wpa_supplicant.
Description
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Exploits (2)
This repository provides a functional proof-of-concept for CVE-2017-13077 (KRACK attack) by simulating a WPA2 4-way handshake and demonstrating the vulnerability in a controlled Docker environment. It includes scripts to capture and analyze EAPOL frames, as well as a demonstration of the KRACK attack using modified hostapd and wpa_supplicant.
This repository provides a functional proof-of-concept for CVE-2017-13077 (KRACK attack) by simulating a WPA2 4-way handshake and demonstrating the key reinstallation vulnerability. It includes Dockerized environments for an access point and client, along with scripts to capture and analyze the handshake cryptographically.
References (35)
Scores
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N