https://github.com/tam7t/heartbleed_openvpn_poc

https://github.com/tam7t/heartbleed_openvpn_poc

Last synced: 3 months ago
JSON representation

• Host: GitHub
• URL: https://github.com/tam7t/heartbleed_openvpn_poc
• Owner: tam7t
• Created: 2014-04-17T04:11:11.000Z (about 11 years ago)
• Default Branch: master
• Last Pushed: 2014-04-17T15:54:17.000Z (about 11 years ago)
• Last Synced: 2025-01-30T23:41:21.333Z (5 months ago)
• Language: Python
• Size: 129 KB
• Stars: 1
• Watchers: 2
• Forks: 0
• Open Issues: 2
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
heartbleed_openvpn_poc

======================

Script to encapsulate heartbleed (CVE-2014-0160) POC's against OpenVPN

Built by Tommy Murphy (@tam7t) to investigate vulnerable dd-wrt build

Usage

-----

    python openvpn-proxy.py 

    python heartbleed-poc.py localhost

Limitations

-----------

   * UDP only (no TCP)

   * implementing `--tls-auth` would block this (that would require HMAC'ing of messages)

   * `time_t` timestamp not implemented (part of packet-id)

   * no reliability layer (ignores acks/doesn't retransmit) 

   * `key id` parameter fixed to 0 (bottom 3 bits of OpenVPN opcode)