Twitter

Here's a detailed write-up of the EAP bug that affected all Apple devices (except watchOS), CVE-2019-6203. It includes a deep dive into MSCHAPv2 sensepost.com/blog/2019/unde… there's some code at github.com/sensepost/unde… too

04:26 - 18. tra 2019.

A repository with toy implementations of MSCHAPv2, MPEE and WPA/2 to understand EAP better - sensepost/understanding-eap

	Dominic White @singe	18. tra
	Odgovor korisniku/ci @singe This might also be useful for WiFi generalists studying for their CWNP or CWNE cc @robrobstation
	Prikaz razgovora ·

	Dominic White @singe	21. tra
	Odgovor korisniku/ci @_cablethief github.com/sensepost/wpa_… from @_cablethief looks exciting. Sycophant can not only get you on the network but let you keep the victim device connected to your rogue AP.
	Prikaz razgovora ·

	Glenn Wilkinson 🇿🇼 @glennzw	19. tra
	Odgovor korisniku/ci @singe ❤️ pic.twitter.com/IbLcerajN2
	Prikaz razgovora ·

	Dominic White @singe	19. tra
	Odgovor korisniku/ci @glennzw For macOS and tvOS too twitter.com/singe/status/1… ;)
	Prikaz razgovora ·

	Adam Toscher @W00Tock	18. tra
	Odgovor korisniku/ci @singe @brad_anton I wonder if this is why the EAP-GTC downgrade works too ? Apple/Android need to address this issue. Once again something @brad_anton had buit into his code but didn't report?
	Prikaz razgovora ·

	Dominic White @singe	18. tra
	Odgovor korisniku/ci @W00Tock @brad_anton I'll get around to that next :)
	Prikaz razgovora ·

	Brad Antoniewicz @brad_anton	18. tra
	Odgovor korisniku/ci @singe great write up and thanks for the shouts!
	Prikaz razgovora ·

	Dominic White @singe	18. tra
	Odgovor korisniku/ci @brad_anton You’re welcome ;)
	Prikaz razgovora ·

	Mathy Vanhoef @vanhoefm	16. svi
	Odgovor korisniku/ci @singe Nice work! We wanted to study issues like this as well, but haven't found the time. Are you planning any follow-up work? :)
	Prikaz razgovora ·