Protected Extensible Authentication Protocol (PEAP) is the most popular version of EAP in use. This is the EAP mechanism shipped natively with Windows.
PEAP has two versions:
PEAP uses server-side certificates for validation of the Radius server. Almost all attacks on PEAP leverage mis-configurations in certificate validation.
In the next lab, we will look at how to crack PEAP, when certificate validation is turned off on the client.