Skip to content

4rshdeep/BEAST-crypto

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
beast.py
beast.py
 
 
report.pdf
report.pdf
 
 

Repository files navigation

Proof of Concept for BEAST (chosen-plaintext attack)

This proof of concept is focused on the cryptography behind the BEAST (Browser Exploit Against SSL/TLS) attack presented by Thai Duong and Juliano Rizzo on September 23, 2011. This a chosen-plaintext attack and this allow you to retrieve sensitives informations if the Transport Layer Security used is TLS1.0 or SSLv3. The orginal proof of concept can be found here : Here come the Ninjas

More Details about BEAST can be found here

Demo

python2 beast.py

We can also try with a custom cookie instead of hardcoded one,

 python2 beast.py --cookie aNothEr5ecRetcOoKIE

About

No description or website provided.

Topics

python cryptography poc vulnerabilities crypto-attacks

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages