Bypassing Port-Security In 2018 - Defeating MacSEC and 802.1x-2010

Explore advanced techniques for bypassing wired port security in this conference talk from 44CON 2018. Delve into the limitations of existing methods for attacking 802.1x-2004 and learn how the development of 802.1x-2010 with MacSEC encryption has changed the landscape. Discover a novel approach to circumventing 802.1x-2010 by exploiting weaknesses in EAP implementations. Examine how improved 802.1x support in peripheral devices impacts security and why weak EAP forms remain a vulnerability. Gain insights into recent Linux kernel improvements that facilitate bridge-based techniques and alternative methods for network interaction. Get introduced to Silent Bridge, an open-source tool encompassing these new bypass techniques, set for release at the conference.