PaulDotCom mailing list archives
SSH Diffie-Hellman exchange Decryptor tool
From: uss.thebug at gmail.com (Ulisses Castro)
Date: Wed, 19 May 2010 15:39:36 -0300
Opa! E ae Danilo beleza? Ent?o h? um temp?o atraz vi uma apresenta??o na Debconf que rolou na argentina e o cara que apresentou a falha das chaves de SSH na ?poca utilizou o Wireshark para descriptografar o tr?fego "on the fly"... muito interessante, nunca fiz nenhum POC relacionado mas fica ae a dica que talvez possa te ajudar. Grande abra?o, Ulisses On Wed, May 19, 2010 at 2:22 PM, Danilo Nascimento <danilonc at bugnotfound.com
wrote:
Hi Guys! Do you know any tool that can decrypt an SSH traffic that was authenticated via Public-Key? I have both Server private key and User private key, but i can't figure out how i can extract the DH Key and then get the clear ssh session. I've already tried the ssh_decoder (http://www.cr0.org/progs/sshfun/) but there is no option to provide the certificates, it tries brute-forcing the debian vulnerable keys (CVE-2008-0166) Thanks, Danilo Nascimento _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
-- Ulisses Castro -------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100519/fc285835/attachment.htm
Current thread:
- SSH Diffie-Hellman exchange Decryptor tool Danilo Nascimento (May 19)
- SSH Diffie-Hellman exchange Decryptor tool Ulisses Castro (May 19)
- SSH Diffie-Hellman exchange Decryptor tool Ulisses Castro (May 19)
- SSH Diffie-Hellman exchange Decryptor tool Danilo Nascimento (May 19)
- SSH Diffie-Hellman exchange Decryptor tool Ulisses Castro (May 19)
- SSH Diffie-Hellman exchange Decryptor tool Ulisses Castro (May 19)