An evil twin attack is a wireless phishing attack which can steal password without using word list are using brute force attack. It consists of three attacks at the same time.

  •  Dos (Denial Of Service)
  •  Handshake Capturing .cap file
  •  Phishing

In first procedure it will disconnect all the WI-Fi connections to capture Packets 
As far we are using water slides for this method .

Evil Twin Attack Tools

 

  1. Linset
  2. wifiphisher

Stealing Passwords With Evil Twin Attack

Linset Evil Twin Attack Tool. Today we use it to perform Evil Twin Attack Without ESP dongles.
You Can Download Linset For Kali Linux Or Use WifiSlax For This Purpose. Because Its Build in With WifiSlax.
 
Commands 
 
Now Just Open Terminal And Type Command
cd

Then Type

cd Desktop

Then Type

git clone  https://github.com/vk496/linset.git

Then Type

Linset

And If Your Using Kali Then Locate The Directory and Type Command

chmod +x linset

Then Type

./linset

 

 How Linset Works

  • First It Scan the networks.
  • Then Select network.
  • It Capture handshake (can be used without handshake)
  • We choose one of several web interfaces tailored for me (thanks to the collaboration of the users)
  • Mounts one FakeAP imitating the original
  • It creates a DNS server to redirect all requests to the Host
  • A DHCP server is created on FakeAP    
  • The mechanism is launched to check the validity of the passwords that will be introduced
  • The web server with the selected interface is launched
  • The attack will stop after the correct password checking
  • It deauthentificate all users of the network, hoping to connect to FakeAP and enter the password.


Video Guide 
 
 
If You Face Any Problem You Can Ask Me For Solution.