https://github.com/AonCyberLabs/PadBuster

Automated script for performing Padding Oracle attacks
https://github.com/AonCyberLabs/PadBuster

Last synced: 8 months ago
JSON representation

Automated script for performing Padding Oracle attacks

• Host: GitHub
• URL: https://github.com/AonCyberLabs/PadBuster
• Owner: AonCyberLabs
• License: apache-2.0
• Created: 2011-04-11T19:37:45.000Z (over 14 years ago)
• Default Branch: master
• Last Pushed: 2024-07-13T19:27:03.000Z (over 1 year ago)
• Last Synced: 2024-10-30T06:33:30.600Z (about 1 year ago)
• Language: Perl
• Homepage: http://www.gdssecurity.com/l/
• Size: 17.6 KB
• Stars: 750
• Watchers: 45
• Forks: 219
• Open Issues: 8
• Metadata Files:
  • Readme: README
  • License: LICENSE

Awesome Lists containing this project

• awesome-ctf-resources - PadBuster - Automated script for performing Padding Oracle attacks. (Cryptography)
• awesome-termux-hacking - PadBuster - Automated script for performing Padding Oracle attacks.[](https://github.com/AonCyberLabs/PadBuster/stargazers/) (Uncategorized / Uncategorized)

README

          
PadBuster - Automated script for performing Padding Oracle attacks

Author: Brian Holyfield - Gotham Digital Science (labs@gdssecurity.com)

Credits to J.Rizzo and T.Duong for providing proof of concept web exploit

techniques and S.Vaudenay for initial discovery of the attack. Credits also

to James M. Martin (research@esptl.com) for sharing proof of concept exploit

code for performing various brute force attack techniques.

PadBuster is a Perl script for automating Padding Oracle Attacks. PadBuster  

provides the capability to decrypt arbitrary ciphertext, encrypt arbitrary plaintext, 

and perform automated response analysis to determine whether a request is vulnerable 

to padding oracle attacks.

PadBuster is released under the Apache License, version 2.0 (Apache-2.0)

https://opensource.org/licenses/Apache-2.0