WavePit demonstrates a weakness in the authentication process of 802.1X EAP-MD5 in Wi-Fi networks that allows
an attacker to gain login information by a dictionary attack.
A Wi-Fi compliant card (802.11a,b,g) that
supports monitor-mode is required.
[WavePit at Sourceforge]