https://github.com/jimmy-ly00/dhe-prime-grabber

Grabs Diffie-Hellman primes from certificates using OpenSSL. Uses multiprocessing to collect over 50 million Diffie-Hellman primes.
https://github.com/jimmy-ly00/dhe-prime-grabber

certificate certificates crawler dhe-prime-grabber diffie-hellman ipv4 multiprocessing openssl prime prime-numbers python python-3

Last synced: about 3 hours ago
JSON representation

Grabs Diffie-Hellman primes from certificates using OpenSSL. Uses multiprocessing to collect over 50 million Diffie-Hellman primes.

• Host: GitHub
• URL: https://github.com/jimmy-ly00/dhe-prime-grabber
• Owner: jimmy-ly00
• License: mit
• Created: 2017-03-11T22:48:05.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2020-06-05T09:33:29.000Z (over 4 years ago)
• Last Synced: 2023-07-15T11:29:06.450Z (over 1 year ago)
• Topics: certificate, certificates, crawler, dhe-prime-grabber, diffie-hellman, ipv4, multiprocessing, openssl, prime, prime-numbers, python, python-3
• Language: Python
• Homepage:
• Size: 12.4 MB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# DHE-prime-grabber

Grabs Diffie-Hellman primes from certificates using OpenSSL. 

Censys raw data were used from here: https://censys.io/data

Primes from Alexa Top 1mil and IPv4 with cipher suits DHE can be found from here (March 2017): https://drive.google.com/drive/folders/10447fHAB6HLDASeGjvKbFN5ebPwzqp7w

### Example

Uses re-compiled OpenSSL with trace option on to view the Diffie-Hellman handshake protocol. Make sure openssl-trace and alexa_top1mil are in the same folder. Includes multiprocessing to make use of all cores and increase speed performance. Outputs a csv file instead of stdout for I/O bound reasons. You can manually update the workers if you are not bounded by the network bandwidth!

Tip: You can run the script as a background process by ```nohup ./find_primes_multi.py & ```

**Warning**: IPv4 contains 50 million rows and could take up to 60 hours to run from a home network. As of 2017, it downloads 50GB and uploads 35GB worth of certificates and exchanges.

### Linux

```python

./find_primes_multi.py

```

If multiprocessing fails use:

```python

./find_primes.py 

```

### Windows

To run under Windows, you must change the relevant script cmd. Will implement this under one script later.

```python

cmd = subprocess.check_output([os.path.dirname(sys.argv[0])+"/openssl-trace",

                "s_client", "-trace",

                "-cipher", "DHE",

                "-connect", server+":443"],

                stdin=subprocess.DEVNULL, stderr=subprocess.DEVNULL, timeout=1) 

```

to 

```python

cmd = subprocess.check_output("openssl-trace.exe",

                "s_client", "-trace",

                "-cipher", "DHE",

                "-connect", server+":443"],

                stdin=subprocess.DEVNULL, stderr=subprocess.DEVNULL, timeout=3) 

```

To run, open cmd and cd into the working directory and execute:

```python

python ./find_primes_multi.py

```

If multiprocessing fails use:

```python

python ./find_primes.py 

```