Trick client into connecting to unsecure evil twin Wi-Fi access point

Question

Let's say I create an unsecured evil twin for a Wi-Fi AP that is secured.

If I successfully deauth the victim and get his device to choose my evil twin to connect to, will he get a message alerting him that this network was previously secured and that now it's not? Or will the device try to reconnect without providing a password?

If it's a case of "it depends", what does it depend on? The device's OS Wi-Fi implementation? Or the Wi-Fi protocol used?

Thanks!

You cannot make a client to connect to you if the original ssid is secured and evil twin one is insecure . — Arjun sharma, Nov 02 '16 at 15:43
@BadSkillz not a duplicate, I'm not talking about capturing the password. — jeremy, Nov 02 '16 at 15:50

score 0 · Answer 1 · answered Nov 02 '16 at 16:06

0

The user's device can distinguish the Evil Twin from the original AP

In this case the attack can't work if the deauthenticated user doesn't connect manually to your evil twin (And he doesn't notice it's not protected)

answered Nov 02 '16 at 16:06

Mr. E

1,954
9
18

Trick client into connecting to unsecure evil twin Wi-Fi access point

1 Answers1