Open Wi-Fi Got Encrypted. Here's Why Your Rogue AP Still Works.
So you’re sitting in your local café, laptop open, and you connect to the free Wi-Fi. No password. No fuss. Job done. But underneath that seamless …
Latest
// Security Research & Exploit Development
TheXero Penetration Testing · Wireless · Exploit Dev
Penetration Testing, Exploit Development & Wireless Security. No filler. No fluff. Just the real work.
Latest From The BlogAll Posts
Wireless Adapter Recommendations for Pentesters in 2025
One of the most common questions I still receive is: “What WiFi adapter should I use for pentesting?” Over the last 13 years, I have tested a very …
Hacking Hidden WiFi Networks
Hidden SSIDs are one of those security measures that feel effective but provide almost no real protection against a determined attacker. Here’s why — and …
Wireless Pivots: How Trusted Networks Become Invisible Threat Vectors
Even the most secure wireless deployments — including EAP-TLS with client certificate validation — can become entry points when endpoints are exploited in less …
Cohort 1 Wrap-Up: Thank You and What's Next
We wrapped up Cohort 1 of the WiFi Attacks Specialist course last week and I wanted to take a moment to say thank you to everyone who joined. Twelve …
EAP-TLS Security: How Attackers Exploit Enterprise Wi-Fi Vulnerabilities
TL;DR – EAP-TLS Wi-Fi Authentication in a Nutshell EAP-TLS provides strong mutual authentication using client/server digital certificates. The process includes …
The Evolution of Wi-Fi Security: From WEP to WPA3
TL;DR – Evolution of Wi-Fi Security: WEP was the first Wi-Fi security protocol but was quickly broken due to weak encryption and IV reuse. WPA introduced TKIP …
// WiFi Attacks Specialist Course
Learn to attack wireless networks from scratch
Live cohort-based training covering everything from 802.11 fundamentals to advanced rogue AP attacks.
View Training