Hi guys I thought I'd just share this little guide I wrote up, I think it will give some of you an interesting read. It talks about a few vulnerabilities regarding WPA/WPA2 Enterprise networks and how to go about auditing them. Its my first guide so don't be too harsh. Please let me know
This guide will use the following scenarios:
1.Certificate authentication is not present
2. Certificate authentication is present but doesnt specify the server
3. Using Iphones to hack wpa enterprise
The success rate of this hack will come down to the strength of your dictionary, just like regular WPA. This guide however does not discuss rainbow tables for cracking the challenge response, perhaps I will write that up if anyone wants.