Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

SSL/TLS Diffie-Hellman prime discovery script and a patch to TLS library

From: Jacob Gajek <jacob.gajek () esentire com>
Date: Thu, 4 Jun 2015 17:44:35 +0000 (UTC)
Hi List,

Here is a small NSE script for discovery of well-known SSL/TLS Diffie-Hellman primes, as exploited by the recent Logjam 
vulnerability.

https://github.com/eSentire/nmap-esentire

It is based on the excellent TLS library code from Daniel Miller.  I have attached a tiny patch to the TLS library code 
to fix DH parameter unpacking for (EC)DHE_PSK key exchange variants.

As I am new to Nmap scripting and Lua, I may not have gotten things quite right to make it production-ready.  Any 
advice would be appreciated.

Regards,
Jacob Gajek

Attachment: tls.patch
Description: 

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: