Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

remote debian/ubuntu blacklist key checkers [ssl - found, ssh -found, openvpn - ?]

From: Jacky Jack <jacksonsmth698 () gmail com>
Date: Fri, 17 Sep 2010 01:32:39 +0800
Just only one is needed - OpenVPN?


---------- Forwarded message ----------
From: Cody Tubbs
Date: Wed, Sep 15, 2010 at 2:17 AM
Subject: Re: remote debian/ubuntu blacklist key checkers



http://packetstormsecurity.com/UNIX/scanners/haxssl.tgz

 ///  File Name:        haxssl.tgz
Description:
This Ruby code will test a specified Host's SSL certificate against
the Debian-based blacklist of keys (RSA 2048 and DSA 1024) generated
during the period where openssl on Debian-based installs suffered from
a weakness in random number generation. Note that the blacklist is
embedded in the code so the file is about 23 MB.
Author: Cody Tubbs
Related File:   dsa-1571-1.txt
File Size:      13052186
Related CVE(s): CVE-2008-0166
Last Modified:  May 29 14:12:08 2008
MD5 Checksum:   96666f341f89b312294862723156679c

-- 
------------------------------------------------------
Cody Tubbs
-Sr. Network & Security Engineer.
-Certified Master Linux Administrator (BB4.0)



On Tue, Sep 14, 2010 at 6:41 PM, Jacky Jack <jacksonsmth698 () gmail com> wrote:

Hello

I found this site: serversniff.net

http://serversniff.net/sshreport.php
http://serversniff.net/sslcert.php

I know we check locally with ssh-vulnkey,  ssl-vulnkey, and openvpn-vulnkey.


Are there any equivalent offline scripts to test blacklist keys of
SSH - SSL - OpenVPN of a remote server?
I know that there are few for ssh - debian_openssh_key_tester.rb .
I've been searching ones for SSL and OpenVPN.


Thank you.



------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: