Man-In-the-Middle, De-authentication and Rogue AP Attacks in 802.11 networks

We would like to share the log files (pcap file, collected with airodump-ng) of experiments conducted within the Networks team of the Signal Processing and Networks research group at Loughborough University. The experiments involve a wireless client associated to an AP and an attacker launching injection attacks (see more details below). The purpose of the experiments is to test our multi-layer fusion ideas for detection of injection type of attacks. We decided to share the data with the research community in an effort to help others test whether their ideas/algorithms can detect the malicious frames and as a platform for comparing results. Three main types of attacks have been launched using publicly available tools:<br>1) Man-In-The-Middle at the Physical Layer attack - using Airpwn tool2) De-authentication Attack Using Aircrack-ng3) Rogue Access Point (AP) attack<br>See attached description PDF file for further details.<br><br>

我们谨分享拉夫堡大学（Loughborough University）信号处理与网络研究小组网络团队开展的实验日志文件（采用airodump-ng工具采集的数据包捕获（pcap）格式文件）。本次实验涉及关联至无线访问点（Access Point, AP）的无线客户端，以及发起注入攻击的攻击者（详见下文）。本实验的目的是验证我们用于检测注入类攻击的多层融合思路。我们决定将此数据集共享给科研学界，旨在助力其他研究者验证其思路或算法是否能够检测恶意帧，并为相关研究成果的对比提供平台。本次实验共采用公开工具发起三类主要攻击：<br>1) 物理层中间人攻击（Man-In-The-Middle at the Physical Layer）——使用Airpwn工具<br>2) 基于Aircrack-ng的解除认证攻击<br>3) 恶意访问点（Rogue Access Point）攻击<br>详细信息请参阅附件中的说明PDF文件。