exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 51 - 75 of 319

Files

OpenSSL Toolkit 1.0.2h

Posted May 3, 2016

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fixes to prevent padding oracle in AES-NI CBC MAC check. Fixed various overflows and other security issues.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2013-0169, CVE-2016-2105, CVE-2016-2106, CVE-2016-2107, CVE-2016-2109, CVE-2016-2176

SHA-256 | 1d4007e53aad94a5b2002fe045ee7bb0b3d98f1a47f8b2bc851dcd1c74332919

Download | Favorite | View

SSLsplit 0.5.0

Posted Mar 28, 2016

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: Added separate src/dst host and port format specifiers. Added signal SIGUSR1 to re-open long-living -l/-L log files. Removed all references to SHA-1 and small key RSA root CA keys from documentation, examples and unit testing. Various other updates and additions.

tags | tool, encryption

SHA-256 | 3eb13c1d0164bf04e7602d9fc45ef7460444b953efaee3ee7d52c357adb3a89a

Download | Favorite | View

OpenSSL Toolkit 1.0.2g

Posted Mar 1, 2016

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Disabled weak ciphers in SSLv3 and up in default builds of OpenSSL. Disabled SSLv2 default build, default negotiation and weak ciphers. Fixed a double-free in DSA code. Various other security issues addressed.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2016-0702, CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799

SHA-256 | b784b1b3907ce39abf4098702dade6365522a253ad1552e267a9a0e89594aa33

Download | Favorite | View

OpenSSL Toolkit 1.0.2f

Posted Jan 29, 2016

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Multiple bug fixes.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2016-0701

SHA-256 | 932b4ee4def2b434f85435d9e3e19ca8ba99ce9a065a61524b429a9d5e9b2e9c

Download | Favorite | View

OpenSSL Toolkit 1.0.2e

Posted Dec 3, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fix applied to BN_mod_exp which may produce incorrect results on x86_64. Also addressed was a certificate verify crash with missing PSS parameter, an X509_ATTRIBUTE memory leak, and various other issues.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2015-3193, CVE-2015-3194, CVE-2015-3195

SHA-256 | eee11def03647aa2267434a779608af6fca645023c9a194ddb82f14426835537

Download | Favorite | View

OpenSSL Toolkit 1.0.2d

Posted Jul 9, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Addressed certificate forgery vulnerability.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2015-1793

SHA-256 | 671c36487785628a703374c652ad2cebea45fa920ae5681515df25d9f2c9a8c8

Download | Favorite | View

OpenSSL Toolkit 1.0.2c

Posted Jun 15, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Fix HMAC ABI incompatibility. The previous version introduced an ABI incompatibility in the handling of HMAC. The previous ABI has now been restored.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792

SHA-256 | 0038ba37f35a6367c58f17a7a7f687953ef8ce4f9684bbdec63e62515ed36a83

Download | Favorite | View

OpenSSL Toolkit 1.0.2b

Posted Jun 12, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Infinite loop on malformed ECParameters structure addressed. PKCS7 crash addressed. Various other issues addressed.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792

SHA-256 | d5d488cc9f0a07974195a7427094ea3cab9800a4e90178b989aa621fbc238e3f

Download | Favorite | View

OpenSSL Toolkit 1.0.2a

Posted Mar 20, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: 12 security vulnerabilities have been addressed.

tags | tool, encryption, protocol

systems | unix

SHA-256 | 15b6393c20030aab02c8e2fe0243cb1d1d18062f6c095d67bca91871dc7f324a

Download | Favorite | View

SSLsplit 0.4.11

Posted Mar 18, 2015

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: Fix loading of certificate chains with OpenSSL 1.0.2 (issue #79). Fix build on Mac OS X 10.10.2 by improving XNU header selection.

tags | tool, encryption

SHA-256 | 75554ca11ee38d727456b17b6afd5379e5c14c05160ca66755a25f248b4b1730

Download | Favorite | View

OpenSSL Toolkit 1.0.2

Posted Jan 22, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Added support for OCB mode. SSLv2 support has been removed. Increased the minimal RSA keysize from 256 to 512 bits. Various other updates and fixes.

tags | tool, encryption, protocol, library

systems | unix

SHA-256 | 8c48baf3babe0d505d16cfc0cf272589c66d3624264098213db0fb00034728e9

Download | Favorite | View

OpenSSL Toolkit 1.0.1l

Posted Jan 15, 2015

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Build fixes for the Windows and OpenVMS platforms.

tags | tool, encryption, protocol, library

systems | unix

SHA-256 | b2cf4d48fe5d49f240c61c9e624193a6f232b5ed0baf010681e725963c40d1d4

Download | Favorite | View

SSLsplit 0.4.10

Posted Nov 30, 2014

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: Multiple new options added. Startup memory leaks have been fixed. Minor bug fixes and improvements.

tags | tool, encryption

SHA-256 | f230772efe25557ac62987a865b889bd9253345acb4f0ad2841c7848e7993ce0

Download | Favorite | View

SSLsplit 0.4.9

Posted Nov 4, 2014

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: No longer chroot() to /var/empty by default if run by root, in order to prevent breaking -S and sni proxyspecs (issue #21). Fixed segmentation fault when using -t without a CA. Various other updates.

tags | tool, encryption

SHA-256 | 05c5417a42590ca3bba3ad30881484bc6f8f78aad1a422b3765409428a5e3f06

Download | Favorite | View

OpenSSL Toolkit 1.0.1j

Posted Oct 15, 2014

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Multiple memory leaks fixed. SSLV3 Fallback and various other security issues have been addressed.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2014-3513, CVE-2014-3566, CVE-2014-3567, CVE-2014-3568

SHA-256 | 1b60ca8789ba6f03e8ef20da2293b8dc131c39d83814e775069f02d26354edf3

Download | Favorite | View

OpenSSL Toolkit 1.0.1i

Posted Aug 6, 2014

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Nine security issues have been addressed.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2014-3505, CVE-2014-3506, CVE-2014-3507, CVE-2014-3508, CVE-2014-3509, CVE-2014-3510, CVE-2014-3511, CVE-2014-3512, CVE-2014-5139

SHA-256 | 3c179f46ca77069a6a0bac70212a9b3b838b2f66129cb52d568837fc79d8fcc7

Download | Favorite | View

OpenSSL Toolkit 1.0.1h

Posted Jun 10, 2014

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Various security fixes.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470

SHA-256 | 9d1c8a9836aa63e2c6adb684186cbd4371c9e9dcc01d6e3bb447abf2d4d3d093

Download | Favorite | View

SSLsplit 0.4.8

Posted Jan 16, 2014

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: This release adds experimental support for pf on Mac OS X, and adds support for pf divert-to on FreeBSD and OpenBSD. SSLsplit now removes headers advertising support for SPDY/QUIC from HTTP responses. Additionally, a number of segmentation faults, a memory leak, and a file descriptor leak have been fixed, greatly improving overall stability.

tags | tool, encryption

SHA-256 | 2c181413b1ac98c2e968838cf2aff201b6ff5bba656c22f9d1c756626cd5aa16

Download | Favorite | View

OpenSSL Toolkit 1.0.1f

Posted Jan 10, 2014

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: A TLS record tampering bug was fixed. A carefully crafted invalid handshake could crash OpenSSL with a NULL pointer exception (CVE-2013-4353). Original DTLS digest and encryption contexts are kept in retransmission structures so that the previous session parameters can be used if they need to be re-sent (CVE-2013-6450). A SSL_OP_SAFARI_ECDHE_ECDSA_BUG option (part of SSL_OP_ALL) which avoids preferring ECDHE-ECDSA ciphers when the client appears to be Safari on OS X was added.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2013-4353, CVE-2013-6450

SHA-256 | 6cc2a80b17d64de6b7bac985745fdaba971d54ffd7d38d3556f998d7c0c9cb5a

Download | Favorite | View

SSLsplit 0.4.7

Posted Jul 3, 2013

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: This release prevents IETF draft public key pinning by removing HPKP headers from responses. Also, remaining threading issues in daemon mode are fixed, and the connection log now contains the HTTP status code and the size of the response.

tags | encryption

SHA-256 | 7e75b73ed026d9c776cf93a1d7ed5ad247973c3ce94a6b3367f474f7a56117db

Download | Favorite | View

SSLsplit 0.4.6

Posted Jun 4, 2013

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: This bugfix release fixes a bug in passthrough mode (-P) when no matching certificate is found for a connection (issue 9) and a bug in binding to ports less than 1024 with default settings (issue 8). Additionally, it works around a bug in OpenSSL 1.0.0k and 1.0.1e which caused a segmentation fault when loading certificates or keys.

tags | encryption

SHA-256 | 3143e1c71803d7c023db29134bb1a2f142de3ebaf7c35d5109204828ddb3b075

Download | Favorite | View

OpenSSL-Based Signcode Utility 1.5.1

Posted Mar 12, 2013

Authored by mfive | Site sourceforge.net

OpenSSL-based signcode utility is used for Authenticode signing of EXE/CAB files. It also supports timestamping.

Changes: This release added support for signing MSI files. The correct PE checksum is now calculated instead of setting it to 0. Support for RFC3161 timestamping was added (-ts option) along with support for extracting, removing, and verifying signatures of PE files. A problem with not being able to decode timestamps with no newlines was fixed. Support for reading keys from PVK files was added (requires OpenSSL 1.0.0 or later). Certificates can now be read from PEM files. The -spc option was renamed to -certs (the old option name is still valid).

tags | tool, encryption

systems | unix

SHA-256 | 9d9235d45c7de9b9459a45e0307fa17da99ef289db3cc5f4623a4d171edcc29c

Download | Favorite | View

OpenSSL Toolkit 1.0.1d

Posted Feb 8, 2013

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: A weakness in the handling of CBC ciphersuites in SSL, TLS, and DTLS, exploited through timing differences arising during MAC processing, was fixed. This vulnerability was reported as CVE-2013-0169. A flaw in the handling of CBC ciphersuites in TLS 1.1 and TLS 1.2 on AES-NI supporting platforms was fixed. This vulnerability was reported as CVE-2012-2686. A flaw in the handling of OCSP response verification, exploitable with a denial of service attack, was fixed. This vulnerability was reported as CVE-2013-0166.

tags | tool, encryption, protocol

systems | unix

SHA-256 | 88a423f9b08a994054583691b968815875580e12df754e881d7cfe9f1bd1f49d

Download | Favorite | View

SSLsplit 0.4.5

Posted Nov 9, 2012

Site roe.ch

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.

Changes: This maintenance release fixes a number of bugs, including daemon mode issues related to threading and a problem in the Linux netfilter support. It adds support for 2048-bit and 4096-bit Diffie-Hellman.

tags | tool, encryption

SHA-256 | 176b0905be6ec22ab6f20a0142ee7bbc6a083a889490a27c60503a7e9dbd155b

Download | Favorite | View

OpenSSL Toolkit 1.0.1c

Posted Jun 7, 2012

Site openssl.org

OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide.

Changes: Record length are now sanity checked before skipping explicit IV in TLS 1.2, 1.1, and DTLS, to avoid possible DoS attacks. A possible deadlock when decoding public keys has been fixed. The TLS 1.0 record version number is no longer used in the initial client hello if renegotiating. tkeylen in now initialized properly when encrypting CMS messages. In FIPS mode, composite ciphers are no longer used, as they are not approved.

tags | tool, encryption, protocol

systems | unix

advisories | CVE-2012-2333

SHA-256 | 2a9eb3cd4e8b114eb9179c0d3884d61658e7d8e8bf4984798a5f5bd48e325ebe

Download | Favorite | View