KRACK attack

Recently, Mathy Vanhoef of imec-DistriNet, KU Leuven, discovered a serious weakness in WPA2 known as the Key Reinstallation AttaCK (or KRACK) attack. Their overview, Key Reinstallation Attacks: Breaking WPA2 by forcing nonce reuse, and research paper (Key Reinstallation Attacks: Forcing Nonce Reuse in WPA2, co-authored by Frank Piessens) have created quite a stir in our industry because the press touts that it “breaks Wi-Fi”.

Related Post:  BackTrack 5 or Kali Linux 1.0

There have been numerous articles written about this vulnerability, and we won’t rehash them here. However, we want to take a moment to talk about how this relates to Kali Linux, from a defensive, testing, and detection standpoint.

Is Kali Linux Vulnerable?

From a defensive standpoint, if you’re keeping up with your Kali Linux rolling updates (via a simple “apt update && apt upgrade), you’re already patched against this vulnerability thanks to patches in wpasupplicant and hostapd (both at 2.4-1.1). To be entirely clear: an updated version of Kali Linux is not vulnerable to this attack. You are keeping your Kali Linux system up-to-date, aren’t you?

Related Post:  Migrating from Kali Linux 2 to Kali Linux 2016.1

How do I test for the Vulnerability?

Find out by clicking here.

KRACK attack


Share on facebook
Share on twitter
Share on pinterest
Share on linkedin

Hola! Did you notice that no longer runs network ads?  Yep, no more ads from the usual suspects that track you across the Internet.  But since  I still need to pay to keep the site running, feel free to make a small donation by PayPal.

Subscribe for updates. Trust me, no spam!

Mailchimp Signup Form

Sponsored links

1. Attend Algorithm Conference, a top AI and ML event for 2020.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.

78 Responses

  1. I disabled secure boot and fast boot and was able to see the usb drive after hitting F11 on boot. It allows me to select the usb drive to boot from, then the screen goes black for a second and it brings up the boot menu again. I select the usb drive again and it goes black and then just boots into windows 10. I used Rufus to create the USB, and selected “for bios or uefi” on one attempt and “gpt partition for uefi” on another attempt. I have read that you need to drop some files into a /efi/boot/ folder but I can’t find where to get the files to try that, all links are broken.

  2. What if my system gives me the option to run Legacy instead of UEFI? Im currently running windows 7 under Legacy a this time, so would I have any issues if I attempted just a regular dual install of Kali along side windows in Legacy or should I switch it over to UEFI for both? Sorry if its a stupid question but never ran into this issue before, always just wiped the drive for Kali.

    1. In that case, the Kali installer will detect that your computer is set to Legacy BIOS and boot into the version of the installer that supports it.

      If that doesn’t happen automatically, you’ll be given the option to select it.

      Manually, you can boot into the computer’s boot menu and see all the options available. There should be two options for booting into Kali – UEFI and USB. Select USB.

    1. TO access the boot menu, you typically have to press one of the F-keys – F2 or other. Sometimes the Del key. Depens on your computer. Check the documentation for your computer.

  3. I only get one Entry in the boot menu of my usb. I can not choose between UEFI: … and USB: …
    I use a 8GB pendrive and Kali 2016.01 . The pendrive was created with win32diskimager.

    What am I doing´wrong?

    1. When that has happened to me, it meant that the transfer to USB was not done right, so give it another try. Use a different application to effect the transfer.

  4. Hello, when im trying to install kali in my free space partitions it dosen’t recognize the free space mine partition shows “unused” instead of free space and then it dosen’t allow me to edit the partitions or even install kali.
    I will be very thanful if you reply.
    Thanks 🙂

    1. Are you using GPT or MBR partitions. If the latter, and the number of primary partitions is more than 4, then any unused or free space will not be usable. See this article.

      If you can, send me a screenshot of the partition manager from Windows.

Leave a Reply

Your email address will not be published. Required fields are marked *

Get the latest

On social media
Via my newsletter
Mailchimp Signup Form

Partner links

1. Attend Algorithm Conference, a top AI and ML event for 2021.
2. Reasons to use control panel for your server.
3. DHgate Computers Electronics, Cell Phones & more.
Hacking, pentesting distributions

Linux Distributions for Hacking

Experts use these Linux distributions for hacking, digital forensics, and pentesting.


The authors of these books are confirmed to speak during

Algorithm Conference

T-minus AI

Author was the first chairperson of AI for the U.S. Air Force.

The case for killer robots

Author is the Director of the Center for Natural and Artificial Intelligence.

Why greatness cannot be planned

Author works on AI safety as a Senior Research Scientist at Uber AI Labs.

Anastasia Marchenkova

An invitation from Anastasia Marchenkova

Hya, after stints as a quantum researcher at Georgia Tech Quantum Optics & Quantum Telecom Lab, and the University of Maryland Joint Quantum Institute, I’m now working on superconducting qubit quantum processors at Bleximo. I’ll be speaking during Algorithm Conference in Austin, Texas, July 16 – 18, 2020. Meet me there and let’s chat about progress and hype in quantum computing.