Skip to content
/ the-oracle Public

An attack on the Tor network targeting exit relays, by using oracles acquired from a DNS timing side-channel attack. This is my bachelor thesis at Karlstad University.

License

GPL-3.0 license
1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

oscar230/the-oracle

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
bin
bin
 
 
src
src
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
exitmaprc
exitmaprc
 
 
makefile
makefile
 
 
theoracle.conf
theoracle.conf
 
 

Repository files navigation

The Oracle

General


A computer flying like a helicopter in the clouds above the praying eyes of the adversary.

Introduction

A website oracle operating on Tor exit relays.

  • Author: Oscar Andersson oscaande.se
  • Organization: Karlstads University kau.se
  • Course: Examnesarbete DVGC25
  • Term: Autmn 2020 (HT2020)
  • Licence: GPL-3.0 License, see license file or gpl-3.0 on gnu.org.

Legal notice

  • Do not use this on relays that you do not own or do not have explicit permission for!
  • This code is for research purposes only.

Overview

This is tool that exploits DNS cache in the Tor exit nodes.

Build and develop

  • Makefile supose that a UNIX enviorment is used.
  • This repository requires python 3 and python 2.

Tools

The current version of the tools is noted below in case future versions dont support backwards compatability. (as of 2020-10-28) install using pacman -S python python2 pip git tor on Arch based systems and apt-get install python python2 python-pip git tor on Debian based systems.

  • python2 (2.7.18)
  • python3 (3.8.5)
  • pip (20.1.1)
  • git (2.28.0)
  • autoconf (2.69)
  • automake (1.16.2)
  • libtool (2.4.6.42-b88ce-dirty)
  • gcc (10.2.0)
  • tor (0.3.5.12)

Python3 packages

install using python3 -m pip install stem pysocks seaborn.

  • stem
  • pysocks
  • seaborn

Python2 packages

install using python2 -m pip install stem.

  • stem

Additional tools

These tools can be built using the makefile in this repository. More about this in "Running chapter".

Usage

Setup

  • All requirements can simply be aquired from running make or install exitmap manually, then place the contents of src/ in exitmaps modules folder and copy theoracle.conf.example to theoracle.conf to the same direcotry.
  • After running make or manually installing. Configure the program in the theoracle.conf file.

Reset

To reset the tool, run make clean. You will then have do redo the setup procedure, altough note that the configuration file is persistent.

Run

Run the modules with exitmap using ./exitmap/bin/exitmap A --first-hop B --exit C --config-file exitmaprc where A is a module, B is the fingerprint of the first hop relay and C is the fingerprint of the targeted exit relay. The supplied exitmap configuration file is called exitmaprc and should be specificed using --config-file exitmaprc. Read exitmap documentation or run ./exitmap/bin/exitmap for more commands, modules and information.

Credits

Thanks! This could not have been possible without:

And don't worry about the vase.

About

An attack on the Tor network targeting exit relays, by using oracles acquired from a DNS timing side-channel attack. This is my bachelor thesis at Karlstad University.

Topics

dns security tor penetration-testing tor-network tor-relay tor-exits

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

2 watching

Forks

1 fork
Report repository

Releases 1

Thesis release 1.0.0 Latest
Apr 12, 2021

Languages