Wireless Networking
The name broadcast by an access point that clients select to join.
SSID
Collecting publicly available info about a target without directly interacting with it.
Passive Recon
Small wireless device that unlocks/starts a car and is often abused by thieves.
Key Fob
Device that forwards packets between different IP networks.
Router
Security protocol that replaced WEP and uses AES-CCMP in modern networks.
WPA2
DNS record type that reveals a domain’s mail servers.
MX Record
In-vehicle network over which ECUs communicate.
CAN Bus
Protocol that automatically leases IP addresses to clients.
DHCP
IEEE standard commonly called “Wi-Fi 5.”
802.11ac
Website that lets you view archived snapshots of web pages over time.
Wayback Machine
Standard diagnostic port found under the dash in modern vehicles. (mandated by California starting in the 1996 model year)
OBD-II
Default port number most associated with DNS (UDP/TCP).
53
Enterprise Wi-Fi security that uses 802.1X and EAP.
WPA-Enterprise
Query that reveals domain ownership and registrar details without touching the target’s systems.
whois
Attack that forwards and amplifies a key fob’s signal to open a car from afar.
Relay attack
Form of NAT that lets many hosts share one public IP by translating ports.
PAT (Port Address Translation)
Attack where a fake AP mimics a real one to trick users.
Evil twin attack
Public logs you can mine to discover subdomains from issued certificates.
Certificate Transparency logs (e.g., crt.sh)
Wireless tire sensors (315/433 MHz) that can leak IDs and pressure data.
TPMS Sensors
Layer 4 protocol that is connection-oriented and guarantees reliable delivery.
TCP