This article explains how to bypass WiFi client isolation using a monitor mode wireless adapter to craft and inject packets. By manipulating frame headers, an attacker can establish direct communication with other devices on the network, even when client isolation is enforced. The piece details the technical process and provides a Python tool for execution.

A traveler discovered a way to access free WiFi for messaging on British Airways flights by signing up for their frequent flyer program through the captive portal. Through testing and analysis, they revealed that the airline uses SNI (Server Name Indication) to restrict the types of traffic allowed, allowing the traveler to tunnel arbitrary traffic by masquerading as messaging app connections. This led to a deeper exploration of TLS handshakes and the implications of SNI on privacy and data access during flights.