Re: WPA-PSK audit

From: Joshua Wright (jwright@hasborg.com)
Date: Fri Dec 28 2007 - 21:02:47 EST


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Howard Sheen wrote:
> Any Idea On WPA-PSK RainbowTables ???
>
> I'd like to make rainbow tables for both WPA-PSK AES and TKIP
>
> 1. would it be possible?
>
> 2. How can I make it??? "How-to" Link will be appreciated :)

It is not possible to use traditional rainbow tables for WPA/WPA2-PSK
passphrases, due to the design of the PBKDF2 algorithm uses for
calculating the pairwise master key (PMK). coWPAtty
(www.willhackforsushi.com) attempts to precompute the PMK values, but
each table is specific to a given SSID.

- -Josh
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
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=HRQA
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:17 EDT