Fixed challenge for eap 11:22:33:44:55:66:77:88

[T3KX]

Hi
Would it be possible to set a fixed challenge for eap to 11:22:33:44:55:66:77:88 ?

I believe it would help to crack the netntlmv1 .

Thanks

[T3KX]

for example , this service do netntlmv1 for free if the chal is set to this
https://crack.sh/netntlm/

[TomTervoort]

I second this. Being able to set a fixed challenge would be incredible helpful with DES cracking, since then only 1 exhaustive search would be needed to find the keys for any number of captured handshakes using the same challenge.

[Hackndo]

Any update about this?

[Rogdham]

The MsCHAPv2 specification is different from NetNTLMv1, although similar.

The main difference is that the challenge is computed as follows:

ChallengeHash = SHA1(PeerChallenge + AuthenticatorChallenge + Username)[:7]

where AuthenticatorChallenge is chosen by the server, but PeerChallenge is chosen by the client (and Username as well of course).

So it is unfortunately not possible to set the ChallengeHash to 11:22:33:44:55:66:77:88.