Wi-Fi Penetration Test

An offensive review of wireless infrastructure to identify weak encryption, rogue access points, authentication errors and lateral movement vectors originating from Wi-Fi.

Who needs this service

Any organization providing corporate or guest wireless access — retail, hospitality, office campuses and multi-tenant buildings must secure Wi-Fi to stop it becoming an easy entry point.

What the test includes

Testing styles: On-site active testing and passive reconnaissance. Scope includes:

Encryption and EAP method validation (WPA2/WPA3-Enterprise review)
Rogue AP/evil twin detection and guest network isolation checks
Captive portal, onboarding flows and credential exposure testing
Lateral movement attempts from wireless to wired networks

Final Deliverables

A Wi-Fi penetration report, including:

Executive Summary

with risk highlights

Technical Findings

with evidence, configuration fixes and hardening steps

Methodology

aligned to NIST/CIS guidance for wireless security

Optional

wireless monitoring and NAC integration recommendations

Available extensions:

Continuous wireless monitoring, NAC assessment, re-test