points” is the next button down. That populates a list that Fern will provide to you.
When you select the type of network you want to crack, either WEP or WPA, you will
be presented with the box shown in
Figure 7-7
. This gives you a list of the networks
that were found. This list is basically the same list we’ve been dealing with up to now.
Figure 7-7. Fern network selection
You may also notice that at the bottom right of the dialog box is a selection button to
provide Fern with a dictionary to use. Just like
aircrack-ng
, Fern uses a dictionary to
run cracks with, and just as with
aircrack_ng
, you won’t be able to crack the password
if it is not provided in the dictionary that Fern is given. To get Fern started, you select
one of the networks provided, provide it with a dictionary file, and then click the
Attack button.
Going Rogue
Rogue APs come in two, possibly three, flavors. First, you may get an AP that just
tries to lure you in. It may be named FreeWiFi, or it may be a variation on a legiti‐
mate AP. There is no attempt to do anything other than get people to connect. In the
second kind, an attacker attempts to take over a legitimate SSID. The attacker mas‐
querades as the real network, possibly jamming the legitimate signal. The third one is