I know how to create an Evil Twin of a WiFi network using Hostapd. However, I can only create an unencrypted network with eventually a fake login page.
While this can be work with some kind of people, many others can easily understand something it's wrong with their connection.
So I was thinking: it's possible to create an Evil Twin with any type of encryption (standard UIs in OS doesn't show it at the moment of connection) with no /random password (and maybe username) being asked at the moment of connection and sniffed?
So the Evil Twin seems the "good" Twin even in authentication and it can sniff username/ password without login pages that doesn't appear in standard WEP/WPA/WPA2 networks.