Eapeak - Wireless 802.1X Eap Identification And Foot Printing Tool presented at Blackhat Europe 2011

by Matthew Neely (SecureState ), Spencer Mcintyre (SecureState ),

Tags: Security

Summary : When attacking an 802.11 network that uses 802.1X Enterprise authentication it is key to know what Extensible Authentication Protocol (EAP) type is being used to authenticate the client. The EAP type used by the network will greatly influence which attacks can be successfully launched to gain access to the network. Common EAP types used by wireless networks include PEAP, EAP-TTLS, EAP-TLS, EAP-Fast and LEAP. During this talk attendees will learn how enterprise authentication works, how to manually determine the EAP type and what other useful data can be learned by examining an EAP handshake. Finally EAPEAK, a new free wireless penetration testing tool, will be released that automates this process.