Originally Posted by wiire Originally Posted by

@soxrok2212

First of all, thank you for your time and effort.



I have been looking by myself about all 'this' but there's something I can't seem to undestand just yet.



On the pdf slides (pag. 24) there's written:

- Upon reception of M1 the Registrar generates PKR and N2

- The Registrar can then compute the DHKey: DHKey= SHA-256 (zeropad(g^{AB} mod p, 192))



DHKey is needed in order to get AuthKey which is used as key of the HMAC-SHA-256 (for both E-Hash1 and E-Hash2).



How is the DHKey actually calculated? Could you make an example? How do we know A?



Sorry if I am missing something.



I know a little C, not enough to develop a modified version of reaver but hopefully enough to help testing or making some PoC kinda code.

I also have a capture of a TP-LINK router which is apparently Ralink, so ES1 = ES2 = 0, right?



Thank you again.