Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

SSL/TLS Diffie-Hellman prime discovery script and a patch to TLS library

From: Jacob Gajek <jgajek () gmail com>
Date: Thu, 4 Jun 2015 15:14:30 -0400
Hello All,

Here is a small NSE script for discovery of well-known SSL/TLS
Diffie-Hellman primes, as exploited by the recent Logjam vulnerability.

https://github.com/eSentire/nmap-esentire

It is based on the excellent TLS library code from Daniel Miller.  I have
attached a tiny patch to the TLS library code to fix DH parameter unpacking
for (EC)DHE_PSK key exchange variants.

As I am new to Nmap scripting and Lua, I may not have gotten things quite
right to make it production-ready.  Any advice would be appreciated.

Regards,
Jacob Gajek

Attachment: tls.patch
Description: 

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: