Skip to content
This repository has been archived by the owner on Oct 20, 2020. It is now read-only.

takeshixx/sstp-tools

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
 
 
 
 
 
 

Repository files navigation

sstp-tools

This is a small collection of tools for the Secure Socket Tunneling Protocol. Most parts will be (and may stay) highly experimental.

Todo:

  • Scapy template (partially done)
  • Dizzy template (tbd)

SSTP Info

Current server implementations:

Current client implementations:

Further information:

Related research:

SSTP Protocol Layers

   +-------------------+
   |                   |
   |       PPP         |
   |                   |
   +-------------------+
   |                   |
   |       SSTP        |
   |                   |
   +-------------------+
   |                   |
   |       HTTP        |
   |                   |
   +-------------------+
   |                   |
   |       SSL         |
   |                   |
   +-------------------+
   |                   |
   |      TCP/IP       |
   |                   |
   +-------------------+

Nmap Scripts

sstp-discover.nse

This script can be used to check if SSTP is supported on a given host.

Included in Nmap SVN Revision 32661: http://nmap.org/nsedoc/scripts/sstp-discover.html

Sample output:

[ ~/temp ] nmap --script sstp-discover -p443 172.24.10.30   

Starting Nmap 6.41SVN ( http://nmap.org ) at 2013-11-02 01:35 CET
Nmap scan report for vpn1.contoso.com (172.24.10.30)
Host is up (0.0010s latency).
PORT    STATE SERVICE
443/tcp open  https
|_sstp-discover: SSTP is supported.

Scapy Template

Scapy SSTP layer, currently implemented control messages:

  • SSTP_MSG_CALL_CONNECT_REQUEST
  • SSTP_MSG_CALL_CONNECT_ACK
  • SSTP_MSG_CALL_CONNECT_NAK
  • SSTP_MSG_CALL_ABORT
  • SSTP_MSG_CALL_DISCONNECT
  • SSTP_MSG_CALL_DISCONNECT_ACK
  • SSTP_MSG_ECHO_REQUEST
  • SSTP_MSG_ECHO_RESPONSE

Not yet supported control messages:

  • SSTP_MSG_CALL_CONNECTED

sstp-negotiation.py

This is a test script that executes three steps in order to establish the SSTP layer:

  • Creating of a SSL socket
  • HTTP layer negotiation
  • SSTP layer negotiation

Note: This code is highly experimental!

About

Tools for the Secure Socket Tunneling Protocol (SSTP)

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published