https://github.com/teodutu/sp
Security Protocols - UPB 2021-2022
https://github.com/teodutu/sp
Last synced: 9 months ago
JSON representation
Security Protocols - UPB 2021-2022
- Host: GitHub
- URL: https://github.com/teodutu/sp
- Owner: teodutu
- License: gpl-3.0
- Created: 2021-10-09T20:04:49.000Z (over 4 years ago)
- Default Branch: main
- Last Pushed: 2022-01-11T15:52:55.000Z (over 4 years ago)
- Last Synced: 2025-10-08T20:27:07.422Z (9 months ago)
- Language: C
- Size: 7.51 MB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# SP
Security Protocols - UPB 2021-2022
## Labs
### Lab 1 - OpenSSL
Downloading, creating and self-signing certificates from the command line.
For creating and signing the certificate, _inspiration was drawn_ from [this](https://github.com/security-summer-school/web/tree/session-03-secure-comm/03-securing-communication) SSS-Web lab.
The code that programatically generates an unsigned certificate is mostly copy-pasted from [here](https://www.dynamsoft.com/codepool/how-to-use-openssl-to-generate-x-509-certificate-request.html).
### Lab 2 - TLS Certificates
A bunch of scripts for creating a CA certificate and using it to sign both a client and a server certificate.
### Lab 3 - VPN and IPSec Tunnels
This lab uses the scripts from the previous lab to create a TLS-based VPN between 2 VMs.
In addition, as a bonus, an IPSec VPN is also created between the same 2 VMs.
### Lab 4 - Programatic SSL/TLS
A stupid TLS client written in C and another screenshot of an `openssl s_client` command...
### Lab 5 - Wi-Fi Security
In theory, this lab teaches you how to crack Wi-Fi passwords using [aircrack-ng](https://www.aircrack-ng.org/doku.php?id=Main).
But, in reality, it's just a bunch of empty commands to be copy-pasted from the lab sheet into the terminal :(.
### Lab 6 - Google OAuth
A simple web page that uses OAuth.
It served me well in crafting [this grading script](https://github.com/teodutu/Scripts/blob/main/lab-grading/grade.py).
### Lab 7 - Discussion about Assignments
Literally nothing.
### Lab 8 - Snort
Basically a user-space iptables with a somewhat more intelligible syntax.
However, being a low-key iptables, it's still disgusting.
### Lab 9 - Offline Traffic Analysis
Wireshark and snort (bleah...) are used to analyse some `.pcap` files.
Boring...
### Lab 10 - SQL Injection
The basic [DVWA setup](https://dvwa.co.uk/) is attacked in order to showcase a trivial SQL Injection attack.
### Courses
Various course materials (merged slides, notes from students etc) are included in the [Courses](./Courses) folder.