RE: Decrypting PPTP network traffic



Most tools (and there isn't an awful lot of them anyway!) focus on
breaking MS-
CHAP(v1|v2). This seems to be an area where some significant papers were
published
back in the days, but very few tools were actually implemented and
published openly!

If you have packet captures of a tunnel initiation, the username is in clear
text and you can use asleap (http://www.willhackforsushi.com/?page_id=41) to
crack the CHAP challenge/response.

PaulM




------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------