Show HN: VulnTLS a TLS server that can be hacked (github.com)

3 points by tsmr ↗ HN
VulnTLS is currently a small set of TLS vulnerabilities that can be exploited to learn. Most of the vulnerabilities were already present in common TLS implementations. VulnTLS is based on AnotherTLS, a TLS implementation that I implemented from scratch for this purpose (see in the README).

Currently there are only three: - Psychic signatures: Bypass the client certificate authentication! - Timing issues: Get the private key of the server! - Dual_EC: Decrypt the captured connection!

0 comments

[ 3.2 ms ] story [ 13.4 ms ] thread

No comments yet.