Collaborate Disseminate
What I mean by that is when I type ifconfig, what comes up is the same with when I use an online website to get my public IP adress. (such as ipchicken.com)
It is a WPA2-Enterprise MGT network. (it needs both a username and … Continue reading I came across this network where public IP = local IP
I am running an evil twin attack with eaphammer, by default it seems to capture mschapv2 authentication which contains the username and NETNTLM hashes. I have manually created a WiFi connection (on Windows) and manually selec… Continue reading Capturing cleartext authentication (EAP-TTLS/PAP) with WPA-2 Enterprise?
I have found myself in a situation where I need to setup a somewhat secure Wifi network. I am primarily concerned about these attacks, however I welcome any advice about other attacks that I should be concerned with as well:
… Continue reading How can I secure Wifi against these specific attacks?
This question already has an answer here:
Strength of WEP, WPA and WPA 2 PSK
2 answers
what is wi-fi best encryption betw… Continue reading best encryption [duplicate]
I am studying abroad and trying to communicate with my tech support to get my device registered on the university wifi, but they do not really listen to what I have to say (either because they do not understand my English wel… Continue reading How would one register a devices MAC Address to a WPA2 enterprise wifi? [on hold]
I’m wondering how key negotiation works for WPA2 Enterprise where a clear text protocol like EAP is used to authenticate the user. All the info I was able to find suggests that EAP is an inherently insecure authentication met… Continue reading How are encryption keys derived between NAS and Supplicant for 802.1x when using EAP as authentication method?
I understand some of the reasons why WPA Enterprise is more secure from this question: Why is WPA Enterprise more secure than WPA2?
However, given a home network with only one single user where that user has a long and compl… Continue reading Will WPA Enterprise give any advantage on home network with one user?
Will it work, if the PMK is different between the Authenticator and the Supplicant.
PMK is generated using EAP-TLS authentication.
Initially Radius Server provides PMK to the Authenticator using a secured channel. Same PMK re… Continue reading PMK on Authenticator and Supplicant
Which of the two following has a stronger cryptographic strength in withstanding brute-force attacks?
WPA/WPA2 Enterprise using 2048-bit RSA public-key
WPA/WPA2 Personal using 63-character Passphrase
Is it possible for an 802.1x network (PEAP/MSCHAPv2) to have no certificate (CA, user, or otherwise)?
If so, what are the security implications?
The reason I ask is: I’m regularly connecting to a particular organization’s … Continue reading Is it possible for an 802.1x network (PEAP/MSCHAPv2) to have no certificate?