Ethical hacker starts WPA cloud cracking service

Powered by SC Magazine
 

Checks passwords using dictionary attack.

A renowned security researcher has started a new service allowing companies to check the strength of their WPA-PSK encryption passwords.

Moxie Marlinspike, one of the team who revealed the possibility of hacking the Secure Socket Layer (SSL) at this year’s Black Hat conference, has started the WPA Cracker service for security testers and auditors.

The system uses a 400 processor cloud node to run a dictionary attack on WPA-PSK passwords. Marlinspike has developed the 135 million word dictionary specifically for this purpose.

“We offer two different cracking modes at two different prices. You can run your job against half of our CPU cluster for US$17, or you can run it against the entire cluster for US$34,” the service said in a statement.

“The half-mode will take at most 40 minutes to exhaust the entire 135 million word dictionary file (but hopefully we'd find your password before that), where as the full-mode will take at most 20 minutes.”

Marlinspike points out that a standard PC would take about a week to run a similar attack and the service would allow security audits in particular to check the strength of their WPA passwords.

Copyright ©v3.co.uk


Ethical hacker starts WPA cloud cracking service
 
 
 
Top Stories
NBN Co names first 140 FTTN sites
National trial extended.
 
Cloud, big data propel bank CISOs into the boardroom
And this time, they are welcome.
 
Photos: A tour of CommBank's new innovation lab
Oculus Rift, Kinect and more.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  26%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  23%
 
End user computing (desktops, mobiles, apps)
  12%
 
Software development
  27%
TOTAL VOTES: 227

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  62%
 
No
  38%
TOTAL VOTES: 69

Vote