// www.polkaned.net/benjo/mschapv2acc
// This project is here now : http://code.google.com/p/mschapv2acc/

[0x00] - What?
/*
 * mschapv2acc is a proof of concept of MS-CHAP-V2 cracking tool.
 * It uses old know vulnerability and fast implementation of cryptographic
 * algorithm.
 * The main goal is to prove the need to use very strong passwords with this
 * method (or to use another inner-authentication method).
 */

[0x01] - So?
/*
 * Just see...
 *
 * Standard mode
 */
 img
/*
 * Improved mode
 */
 img

[0x02] - Download
/*
 * [ 17/05/2008 - mschapv2acc-0.2.11.tar.gz - Linux / Mac OS X ]
 */

[0x03] - Install
/*
 * You need a processor with SSE2 support.
 * This tool has been compiled with gcc for Linux.
 *
 * Just extract the archive, and execute 'make'.
 */
 | ~$ tar xfvz mschapv2acc-x.y.z.tar.gz
 | ~$ cd mschapv2acc-x.y.z
 | ~$ make

[0x04] - Features (or not)
/*
 * 2 main modes : Brute Force mode and Dictionary mode
 *
 * To change the charset for the Brute Force mode, modify nbc and caract values.
 */

[0x05] - Exemples of uses
/*
 * Brute force mode
 */
 | ~$ ./mschapv2acc file_auth
/*
 * Brute force mode with challenge's cryptanalysis enabled
 */
 | ~$ ./mschapv2acc -x file_auth
/*
 * Brute force mode with SSE2 enabled
 */
 | ~$ ./mschapv2acc -s file_auth
/*
 * Brute force mode with challenge's cryptanalysis and SSE2 enabled
 */
 | ~$ ./mschapv2acc -x -s file_auth
/*
 * Dictionary mode
 */
 | ~$ ./mschapv2acc -w dico.txt file_auth
/*
 * Dictionary mode with challenge's cryptanalysis enabled
/*
 | ~$ ./mschapv2acc -x -w dico.txt file_auth
/*
 * All the options are listed on the help message printed when you run
 * mschapv2acc with no parameter.
 */

[0x06] - About file_auth
/*
 * file_auth is a binary dump file containing required MS-CHAP-V2 data.
 *
 * This file is build as follow:
 * 1 *int = user name length
 * user_name_lenght *char = user name
 * 16 *unsigned char = auth challenge
 * 16 *unsigned char = peer challenge
 * 8 *unsigned char = challenge
 * 24 *unsigned char = response
 *
 * wpe2acc is a tool to help you converting hex representation of MS-CHAP-V2
 * information to binary.
 * You can feed it with the output of FreeRADIUS Wireless Pwnage Edition to
 * generate the input file (file_auth) for mschapv2acc.
 */

[0x07] - To contact me
/*
 * benjamin [at] polkaned [dot] net
 */