Tag Archive | "hacking ssl"


07 December 2011 | 9,602 views

sslyze – Fast and Full-Featured SSL Configuration Scanner

Transport Layer Security (TLS), commonly called SSL, is one of the most widely used protocols to secure network communications. As costs fall and user security and privacy expectations rise companies are deploying it more widely every year. Attacks against the CA system, SSL implementation flaws and aging protocol versions have grabbed news headlines, bringing attention [...]

Continue Reading

Tags: , , , , , , , , , , ,
# Posted in: Countermeasures, Network Hacking, Web Hacking | * Comments Off

01 July 2011 | 10,565 views

sslsniff v0.7 – SSL Man-In-The-Middle (MITM) Tool

It’s been a while since the last sslsniff release back in August 2009 with version 0.6 – sslsniff v0.6 Released – SSL MITM Tool. Version 0.7 was finally released earlier in the year in April – so here it is. This tool was originally written to demonstrate and exploit IE’s vulnerability to a specific “basicConstraints” [...]

Continue Reading

Tags: , , , , , , , , ,
# Posted in: Hacking Tools, Network Hacking | * Comments Off

02 May 2011 | 7,894 views

sslsnoop v0.6 – Dump Live Session Keys From SSH & Decrypt Traffic On The Fly

sslsnoop dumps live session keys from openssh and can also decrypt the traffic on the fly. Works if scapy doesn’t drop packets. using pcap instead of SOCK_RAW helps a lot now. Works better on interactive traffic with no traffic at the time of the ptrace. It follows the flow, after that. Dumps one file by [...]

Continue Reading

Tags: , , , , , , , , , , , , ,
# Posted in: Cryptography, Exploits/Vulnerabilities, Network Hacking | * Comments Off

16 November 2009 | 31,965 views

SSL Renegotiation Bug Succesfully Used To Attack Twitter

When this SSL Renegotiation bug hit the news, most people said it was a theoretical attack and was of no practical use in the real world. But then people tend to say that about most things don’t they until they get pwned up the face. It turns out the rather obscure SSL flaw can be [...]

Continue Reading

Tags: , , , , , , , , , , , , ,
# Posted in: Exploits/Vulnerabilities, Network Hacking, Web Hacking | * 2 Comments

14 August 2009 | 25,585 views

sslsniff v0.6 Released – SSL MITM Tool

This tool was originally written to demonstrate and exploit IE’s vulnerability to a specific “basicConstraints” man-in-the-middle attack. While Microsoft has since fixed the vulnerability that allowed leaf certificates to act as signing certificates, this tool is still occasionally useful for other purposes. It is designed to MITM all SSL connections on a LAN and dynamically [...]

Continue Reading

Tags: , , , , , , , , , , ,
# Posted in: Forensics, Hacking Tools, Network Hacking | * 3 Comments

26 February 2009 | 20,730 views

SSLstrip – HTTPS Stripping Attack Tool

This tool provides a demonstration of the HTTPS stripping attacks that was presented at Black Hat DC 2009. It will transparently hijack HTTP traffic on a network, watch for HTTPS links and redirects, then map those links into either look-alike HTTP links or homograph-similar HTTPS links. It also supports modes for supplying a favicon which [...]

Continue Reading

Tags: , , , , , , , , , ,
# Posted in: Hacking Tools, Network Hacking | * 3 Comments

Popular Tags

botnets · computer-security · darknet · exploits · google · hacking · hacking-networks · hacking-websites · hacking-windows · hacking tool · Hacking Tools · Information-Security · Legal Issues · malware · microsoft · network-security · Network Hacking · Password Cracking · penetration-testing · Phishing · Privacy · scammers · Security · Security Software · spam · spammers · sql-injection · trojan · trojans · virus · viruses · vulnerabilities · web-application-security · web-security · Web Hacking · windows · windows-security · Windows Hacking · worms · XSS ·