PEN-210: Foundational Wireless Network Attacks (OSWP)

The only OffSec course dedicated to wireless network penetration testing. Course modules: • IEEE 802.11 Fundamentals — frame types, association process, 802.11 security standards • Wireless Lab Setup — monitor mode, packet injection, adapter selection and configuration • Aircrack-ng Suite — airodump-ng, aireplay-ng, airbase-ng, airdecap-ng mastery • WEP Cracking — ARP replay attacks, fragmentation attacks, ChopChop attacks, PTW method • WPA/WPA2-Personal — 4-way handshake capture, PMKID attack, dictionary & rule-based cracking • WPA/WPA2-Enterprise — PEAP/EAP-TTLS attacks, credential harvesting via rogue RADIUS • PMKID Attacks — clientless WPA2 cracking using hashcat and hcxtools • Evil Twin Attacks — rogue AP deployment, deauthentication forcing, captive portal credential capture • Kismet & Wireless Recon — passive wireless reconnaissance, hidden SSID discovery • Bluetooth & Bluetooth Low Energy — BLE sniffing basics, MITM on BLE devices • WPS Attacks — Pixie-Dust attack, online WPS PIN brute-force with Reaver/Bully • Post-Exploitation on Wireless — network pivoting, internal recon after gaining Wi-Fi access Leads to the OSWP certification — the only vendor-neutral wireless pentesting credential.