# Wireless Security Testing (802.11) One-sentence definition: Assess Wi-Fi posture for encryption/authentication and rogue device risks. ## Key Facts - Survey SSIDs, encryption (WPA2/WPA3), PMF, EAP methods. - Detect rogues/evil twins; validate NAC and client isolation. - Test guest segmentation and egress restrictions. - **Verify:** check official (ISC)² CBK and current exam outline. ## Exam Relevance - Choose PMF/EAP-TLS verification and rogue detection. **Mnemonic:** “**Air** test with **care**.” ## Mini Scenario Q: Users drop from network via deauth packets—finding/fix? A: PMF disabled; enable PMF/WPA3. ## Revision Checklist - Two checks. - Rogue detection method. - Guest isolation. ## Related [[Wireless Overview (802.11 Concepts)]] · [[WPA2-Enterprise and WPA3 Security]] · [[WIDS WIPS and Rogue AP Detection]] · [[Network Access Control (802.1X, NAC)]] · [[DoH vs DoT (Encrypted DNS in Transit)]] · [[Domain 6 - Index]]