SID 1:44640

Report a false positive

Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER WPA2 key reuse tool attempt

Rule Explanation

This event is generated when WPA2 attachk tools are found traversing a network. Impact: low Details: This rule catches several key components of the python script and scapy utilities found to attack WPA2 networks through key reuse Ease of Attack:

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos Intelligence Group

Rule Groups

No rule groups

CVE

CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13084 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088

Additional Links

papers.mathyvanhoef.com/ccs2017.pdf

Rule Vulnerability

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.
CVE-2017-13077
 Loading description
CVE-2017-13078
 Loading description
CVE-2017-13079
 Loading description
CVE-2017-13080
 Loading description
CVE-2017-13081
 Loading description
CVE-2017-13082
 Loading description
CVE-2017-13084
 Loading description
CVE-2017-13086
 Loading description
CVE-2017-13087
 Loading description
CVE-2017-13088
 Loading description