RE: Decrypting PPTP network traffic
- From: "Paul Melson" <pmelson@xxxxxxxxx>
- Date: Thu, 18 Mar 2010 12:39:41 -0400
Most tools (and there isn't an awful lot of them anyway!) focus onbreaking MS-
CHAP(v1|v2). This seems to be an area where some significant papers werepublished
back in the days, but very few tools were actually implemented andpublished openly!
If you have packet captures of a tunnel initiation, the username is in clear
text and you can use asleap (http://www.willhackforsushi.com/?page_id=41) to
crack the CHAP challenge/response.
PaulM
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org
------------------------------------------------------------------------
- Follow-Ups:
- Re: Decrypting PPTP network traffic
- From: Alexander Perchov
- Re: Decrypting PPTP network traffic
- References:
- Decrypting PPTP network traffic
- From: Alexander Perchov
- Decrypting PPTP network traffic
- Prev by Date: Did you work on OSSTMM 3?
- Next by Date: Re: Re: CTF events?
- Previous by thread: Decrypting PPTP network traffic
- Next by thread: Re: Decrypting PPTP network traffic
- Index(es):
Relevant Pages
|
