Sunday, October 30, 2011

Wireless Attack on Microsoft Peap - Part 1 of 3

Overview of Wireless Standard

In the standard security industry, we have heard about attack against WEP which I have discuss in my previous article WEP Hacking, WPA and WPA2 attack and also PEAP. Peap also known as Protected Extensible Authentication protocol protocol that encapsulates the Extensible Authentication Protocol (EAP) within an encrypted and authenticated Transport Layer Security (TLS) tunnel. It  was jointly developed by Cisco Systems, Microsoft, and RSA Security. You can find more information regard to PEAP here.

On this article, I am going to share with you on how to prepare a base attack machine against PEAP which use Microsoft Challenge Handshake Authentication Protocol V2 aka MSCHAPV2.

Before we start take a look at the picture below. The picture show where is the boundary and area that the attacker can launch the attack. This is a distance vector attack. You must have a very strong antenna or your physical location is close to the users.

Wireless Peap
1)Extract free radius by typing the following command tar -jxvf freeradius-server-2.1.7.tar.bz2
Extract Free Radius

2)Copy the patch free radius to the extracted folder by typing the following command mv freeradius-wpe-2.1.7.patch freeradius-wpe-2.1.7.patch/
Copy the patch free radius

3)You can start patch the server by typing patch -p1 < freeradius-wpe-2.1.7.patch
patch the server
4)After you have completed all the steps, you may start configure the free radius by issuing the following command .\configure && make && make install && ldconfig
Installing Crack version of freeradius
Configure bootstrap
Output of bootstrap
Copy certificate

You can also view my video channel @ Wireless Lan Attack.

I am interested in hearing your feedback, so that I can improve my articles and learning resources for you.

No comments:

Post a Comment