Security and Technology

Auto_EAP – Automated Brute-Force Login Attacks Against EAP Networks

Auto_EAP.py is a script designed to perform automated brute-force authentication attacks against various types of EAP networks. These types of wireless networks provide an interface to facilitate password guessing of domain credentials as radius servers check authentication against Active Directory. Using the python library wpaspy, created by Jouni Malinen j@w1.fi to interact with the wpa_supplicant daemon, automated authentication attacks can be preformed with the intent of not causing account lock-outs.

Demo

./Auto_EAP.py -s HoneyPot -K WPA-EAP -E PEAP -U test.txt -p Summer2016 -i wlan0Initialized…Trying Username Alice with Password test: SUCCESSTrying Username Bob with Password test: FAILEDTrying Username Charles with Password test: FAILEDTrying Username David with Password test: SUCCESSCompleted

Installation

Run ‘RunMeFirst.py’ within the root directory of Auto_EAP. This will compile the wpaspy library as well as setup a stand alone wpa_supplicant.conf file that Auto_EAP.py will use for testing, leaving the system’s wpa_supplicant config file untouched.Help

./Auto_EAP.py -husage: Auto_EAP.py [-h] -i Interface -s SSID -U Usernamefile -p Password -K Key_mgmt -E Eap_typeoptional arguments: -h, –help show this help message and exit -i Interface, –interface Interface The Interface to use -s SSID, –ssid SSID The SSID to attack -U Usernamefile, –User Usernamefile Path to username file -p Password, –password Password Password to use -K Key_mgmt, –key_mgmt Key_mgmt Key_Management type to use -E Eap_type, –eap_type Eap_type Eap type to use

Todo list

[✓] Resoved bug with .a type wireless cards (Shout out to Havok0x90 for his help in resolving this issue)

[-] Add multi-threading functionality

[-] Add support for password lists

Download Auto_EAP http://ift.tt/2eHi4vP http://ift.tt/2aM8QhC

Deixe uma resposta

Preencha os seus dados abaixo ou clique em um ícone para log in:

Logotipo do WordPress.com

Você está comentando utilizando sua conta WordPress.com. Sair / Alterar )

Imagem do Twitter

Você está comentando utilizando sua conta Twitter. Sair / Alterar )

Foto do Facebook

Você está comentando utilizando sua conta Facebook. Sair / Alterar )

Foto do Google+

Você está comentando utilizando sua conta Google+. Sair / Alterar )

Conectando a %s