Evil Twin attacks are when an attacker sets up a fake access point for unsuspecting people to connect to, effectively creating a man-in-the-middle attack.

Karma Attack

KARMA Attacks Radio Machines Automatically (KARMA) attacks listen for probe requests in WiFi networks and respond as if they are the access point, connecting the client to the attackers access point and not the authentic access point.

Downgrade Attack

Downgrade attacks trick clients into using less secure protocols or encryption

Tools

Attackers can use the Aircrack-ng suite to create an evil twin:

1. Listen to traffic over the air to find the SSID and MAC of the legitimate access point.
2. Clone the legitimate access point using airbase-ng
3. Send de-auth packets to de-authenticate clients
4. Make sure that the face access point signal is stronger, which makes the clients connect to it automatically
5. Attacker performs man-in-the-middle attacks