Full Disclosure mailing list archives

Re: Cisco LEAP exploit tool...

From: "Dave Howe" <DaveHowe () cmn sharp-uk co uk>
Date: Wed, 14 Apr 2004 11:23:13 +0100

Thomas wrote:

Another interesting tool: THC-LEAPcracker
The THC LEAP Cracker Tool suite contains tools to break the
  NTChallengeResponse encryption technique e.g. used by Cisco
Wireless LEAP Authentication. Also tools for spoofing
challenge-packets from Access Points are included, so you are
able to perform dictionary attacks against all users.

I don't suppose this tool is any use against EAP? we are considering
implimenting an EAP encrypted AP directly on the lan, and I am looking for
reasons to say it should be DMZed.....

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Cisco LEAP exploit tool... Joel R. Helgeson (Apr 10)
- RE: Cisco LEAP exploit tool... Rafael Núñez (Apr 10)
- Re: Cisco LEAP exploit tool... Thomas (Apr 14)
  - Re: Cisco LEAP exploit tool... Dave Howe (Apr 14)
    - Re: Cisco LEAP exploit tool... Ron DuFresne (Apr 14)
    - RE: [inbox] Re: Cisco LEAP exploit tool... Curt Purdy (Apr 14)
    - Re: [inbox] Re: Cisco LEAP exploit tool... Dave Howe (Apr 14)
    - Re: Cisco LEAP exploit tool... mmo (Apr 14)
    - Re: Cisco LEAP exploit tool... Paul Schmehl (Apr 14)
    - Re: Cisco LEAP exploit tool... Valdis . Kletnieks (Apr 14)
    - Re: Cisco LEAP exploit tool... Ron DuFresne (Apr 14)
    - Re: Cisco LEAP exploit tool... Paul Schmehl (Apr 14)
    - Re: Cisco LEAP exploit tool... Ron DuFresne (Apr 14)
    - RE: Cisco LEAP exploit tool... Aditya, ALD [Aditya Lalit Deshmukh] (Apr 14)

(Thread continues...)