312-50V10 · Question #859
You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lnternal." You realize tha
The correct answer is A. Dragonblood. Dragonblood is a family of vulnerabilities specific to WPA3's Dragonfly (SAE) handshake, making it the relevant attack vector against a WPA3 network.
Question
You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lnternal." You realize that this network uses WPA3 encryption, which of the following vulnerabilities is the promising to exploit?
Options
- ADragonblood
- BCross-site request forgery
- CKey reinstallation attack
- DAP Myconfiguration
How the community answered
(46 responses)- A87% (40)
- B2% (1)
- C4% (2)
- D7% (3)
Why each option
Dragonblood is a family of vulnerabilities specific to WPA3's Dragonfly (SAE) handshake, making it the relevant attack vector against a WPA3 network.
Dragonblood refers to a set of side-channel and denial-of-service vulnerabilities discovered in WPA3's Simultaneous Authentication of Equals (SAE) handshake, also called the Dragonfly handshake. Because these flaws are intrinsic to the WPA3 authentication protocol itself, they represent the most promising attack surface when targeting a WPA3-protected network. Exploitation can allow an attacker to recover the Wi-Fi password through timing or cache-based side channels.
Cross-site request forgery is a web application attack that targets HTTP session trust and has no relevance to Wi-Fi authentication protocols.
Key reinstallation attack (KRACK) targets the four-way handshake in WPA2, not WPA3; WPA3's SAE handshake was specifically designed to be resistant to KRACK-style attacks.
AP Misconfiguration describes a generic administrative error on an access point rather than a specific, exploitable cryptographic vulnerability tied to WPA3.
Concept tested: WPA3 Dragonblood SAE handshake vulnerability
Source: https://papers.mathyvanhoef.com/dragonblood.pdf
Topics
Community Discussion
No community discussion yet for this question.