6 comments

[ 3.3 ms ] story [ 18.3 ms ] thread
I'd been made aware of the possibility of using HSTS redirects to create a fingerprint, but I've yet to see someone make the code available. Please feel free to dig in / contribute / critique.
What's the need for a wildcard cert? Could you use 24 lets encrypt certificates for each sub domain? Genuinely curious.
Yea my first thought was that 24 bits should be able to grow to accommodate more fingerprints, so it would make more sense to have a wildcard. But you could definitely have 24 individual certificates.

I wasn't aware of Let's Encrypt, I'll look into grabbing 24 certs from there and spinning up a demo. Thanks!

I didn't know about this vulnerability. This just blew my mind. Great work on the PoC!