Wireshark-users: [Wireshark-users] Decrypting PPTP network traffic in wireshark or external tool?

From: Alexander Perchov <alexperchov1969@xxxxxxxxxxxxxx>
Date: Wed, 17 Mar 2010 10:52:19 +0100
Note: you might see the same message in other lists, that's a sign of
desperation ;-)

I am looking for a tool that can decrypt MPPE (Microsoft
Point-to-Point Encryption) network traffic given a pcap (or any other
format really) and the correct key / NTLM hash. Is anyone aware of
such a tool - public or even private software?

Most tools (and there isn't an awful lot of them anyway!) focus on
breaking MS-CHAP(v1|v2). This seems to be an area where some
significant papers were published back in the days, but very few tools
were actually implemented and published openly!

Kind Regards,

Your friendly frustrated Alexander