WLAN Security Megaprimer Part 35: Cracking EAP-TTLS
In this video, we will look at how EAP-TTLS based authentication is just as susceptible to Certificate spoofing attacks like PEAP. We will use different inner authentication protocols with EAP-TTLS - MSCHAPv2, MSCHAP, CHAP, PAP etc. and show how a hacker could create a honeypot and crack the client password.
Interestingly, for one of the protocols mentioned above FreeRadius-WPE seems to crash :) Can anyone confirm if this happens to them as well? Could we have an 0Day here :) ?
Video Player should be visible here. If not, install / upgrade flash
Have any Questions? or would like to add a point?
Visit the video page on SecurityTube to post your questions and comments : http://www.securitytube.net/video/2044