Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: WPA-PSK audit

from [Joshua Wright] Network Security [Permanent Link]
Subject: Re: WPA-PSK audit
Date: Fri, 28 Dec 2007 21:02:47 -0500 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Howard Sheen wrote:

Any Idea On WPA-PSK RainbowTables ???

I'd like to make rainbow tables for both WPA-PSK AES and TKIP

1. would it be possible?

2. How can I make it??? "How-to" Link will be appreciated :)


It is not possible to use traditional rainbow tables for WPA/WPA2-PSK
passphrases, due to the design of the PBKDF2 algorithm uses for
calculating the pairwise master key (PMK).  coWPAtty
(www.willhackforsushi.com) attempts to precompute the PMK values, but
each table is specific to a given SSID.

- -Josh
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)

iQIVAwUBR3WqxjWX3FIa1TkuAQJIYQ//aR5bgW7hBpw8LJkUqbb14j7V3N4afjA2
iowDqqsWfOvQ2DA8xD3ikI8pomXrq9DHtJ3ilYSxue4HrGUjbMBIbUa8dUYhR6y5
RFyagWrDUceJeXbvRP6hjTh5+UBW508VkX9zxinHR2A7ZvXVatCeGeRh5umcqJTQ
67sVSEVEI6EPYyEqWruBvxynlcVGFTxQEz1Yr+wCvKsaXjGDDzMi/hpiiVtK7nBN
LqXhs+LkKAnwGxmVD9ZVLGi2RA1FWpBG0hRccGFl2E9Px4S4cUVHvUvntuvJ7sKm
f+je6ccfOOcMFs+mJhRXGECknHe9AqZPJxjLA9/iZgrJ1hhOXMTevL/Tb4Pk83ce
eUJvnrte5pJe8lRLsIb9KnU9QNO0mEbXTL7fj5ImYpwPwpM9Q9ZR8COabKh5V1uX
1dbhr+XX5TaebGNqnb7Bhqmld7jaLNIcXBXx6SOwrNBCASLYu8SLnjfzK+h+1K8N
SAiZRyEtvlP7CNMUoQWvzERfmfsSQGK+EXlQrRWPx4D2jrK8S1H6MkufZ2mIWDqj
SqIk6mGYvgoIBib6zdICiXjAc3aqSvWUWi+jBbASpgKkhqmze9I4lZL3vZY1Rp5h
9PkWI1uiCXJcjbZSAg9WCvOtNXotBvv6UYfR3OCRwwK5NcWCnOir6KS4Pk0iDHcS
/9HmWgv75lE=
=HRQA
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Tool for sending malicious traffic to destination system, Kish Pent
Next by Date:  Bypassing Authentication through Telnet / SSH, Chadha, Sachin
Previous by Thread:  Re: WPA-PSK audit, Howard Sheen
Next by Thread:  Re: WPA-PSK audit, Joshua Wright
Indexes:  [Date] [Thread] [Top] [All Lists]