Skip to content
This repository has been archived by the owner on Nov 20, 2023. It is now read-only.

mykter/tls-kleptography

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README

README

 
 

ca.py

ca.py

 
 

clone.py

clone.py

 
 

rsabd.py

rsabd.py

 
 

serve.py

serve.py

 
 

Repository files navigation

TLS kleptography demo using ryancdotorg's rsabd.py (https://gist.github.com/ryancdotorg/9bd3873e488740f86ebb):

0. Setup: 4xVMs
 - Evil-CA (https://evil-ca.com).
 - Web server (https://victim-site.com)
 - User - CA root cert installed in browser
 - MITM
 
 - appropriate /etc/hosts entries for ca + victim domains in user and MITM machines
 - To bind to privileged ports without root:
    setcap 'cap_net_bind_service=+ep' /usr/bin/python3

1. generate public/private keypair for victim, email them link
 - Browse to https://evil-ca.com on server
 - ./ca.py victim-site.com

2. set up website
 - browse to webserver, download cert + privkey
 - save files in appropriate location
 - run ./serve.py victim-site.com.crt victim-site.com.key

3. set up fake website
 ./clone.py victim-site.com

4. MITM
 - arp poison / edit /etc/hosts

5. Browse to website again on user machine

About

A TLS demo of backdoored RSA key generation

Resources

Readme

License

Apache-2.0 license
Activity

Stars

6 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages