Wireless Security Cheat Sheet

Updated 2026-04-30

Next Topic: Zero Trust Architecture Cheat Sheet

Wireless security encompasses the protocols, techniques, and defensive measures used to protect wireless networks and devices from unauthorized access and attacks. Operating at the physical and data link layers, wireless networks face unique vulnerabilities compared to wired infrastructure — including signal interception, authentication bypass, and protocol exploitation. Understanding both defensive configurations (WPA2/WPA3, 802.1X, proper encryption) and offensive techniques (deauthentication, evil twin, KRACK) is essential for securing modern wireless deployments. A critical insight: most wireless compromises succeed not because of protocol weaknesses, but because of misconfigured or legacy settings that expose enterprise networks to trivial attacks.

What This Cheat Sheet Covers

This topic spans 14 focused tables and 110 indexed concepts. Below is a complete table-by-table outline of this topic, spanning foundational concepts through advanced details.

Table 1: Core Security ProtocolsTable 2: EAP Authentication MethodsTable 3: WPA/WPA2/WPA3 VulnerabilitiesTable 4: Wi-Fi Attack Vectors and TechniquesTable 5: Enterprise Authentication ComponentsTable 6: Wireless Intrusion Detection and PreventionTable 7: Bluetooth and BLE SecurityTable 8: Site Survey and Deployment SecurityTable 9: WPS (Wi-Fi Protected Setup) FlawsTable 10: Captive Portal and Open Network RisksTable 11: Wireless Forensics and MonitoringTable 12: Advanced Attack TechniquesTable 13: Mitigation and Hardening Best PracticesTable 14: Tools and Standards

Table 1: Core Security Protocols

These are the encryption and authentication standards that gate access to a Wi-Fi network, lined up from today's gold standard down to the relics you should never touch. Reading them top to bottom tells the whole story — WPA3 fixing the offline-cracking weakness of WPA2, enterprise modes handing each user their own keys, and WEP sitting at the bottom as a cautionary tale that falls in minutes.

Protocol	Example	Description
WPA3-Personal	`mode: WPA3-SAE` `psk: complex_passphrase`	• Uses Simultaneous Authentication of Equals (SAE) instead of PSK • provides forward secrecy and resistance to offline dictionary attacks • mandatory for Wi-Fi 6 certification
WPA3-Enterprise	`mode: WPA3-Enterprise` `auth: 802.1X-EAP-TLS`	• Requires 192-bit minimum security suite • uses GCMP-256 for encryption and HMAC-SHA-384 for integrity • mandates certificate-based authentication in high-security modes
WPA2-Personal (WPA2-PSK)	`mode: WPA2-PSK` `encryption: AES-CCMP` `psk: shared_key`	• Uses pre-shared key and 4-way handshake for authentication • employs AES-CCMP for encryption • vulnerable to offline dictionary attacks if weak passphrase used
WPA2-Enterprise (802.1X)	`mode: WPA2-Enterprise` `auth: RADIUS + EAP-PEAP` `encryption: AES-CCMP`	• Authenticates users via RADIUS server using EAP methods • each user gets unique encryption keys • supports certificate or username/password authentication depending on EAP type

Table 1: Core Security Protocols

Protocol	Example	Description
WPA3-Personal	`mode: WPA3-SAE` `psk: complex_passphrase`	• Uses Simultaneous Authentication of Equals (SAE) instead of PSK • provides forward secrecy and resistance to offline dictionary attacks • mandatory for Wi-Fi 6 certification
WPA3-Enterprise	`mode: WPA3-Enterprise` `auth: 802.1X-EAP-TLS`	• Requires 192-bit minimum security suite • uses GCMP-256 for encryption and HMAC-SHA-384 for integrity • mandates certificate-based authentication in high-security modes
WPA2-Personal (WPA2-PSK)	`mode: WPA2-PSK` `encryption: AES-CCMP` `psk: shared_key`	• Uses pre-shared key and 4-way handshake for authentication • employs AES-CCMP for encryption • vulnerable to offline dictionary attacks if weak passphrase used
WPA2-Enterprise (802.1X)	`mode: WPA2-Enterprise` `auth: RADIUS + EAP-PEAP` `encryption: AES-CCMP`	• Authenticates users via RADIUS server using EAP methods • each user gets unique encryption keys • supports certificate or username/password authentication depending on EAP type