dheater
CVE-2021-37740
dheater | CVE-2021-37740 | |
---|---|---|
9 | 1 | |
186 | 6 | |
1.6% | - | |
6.4 | 0.0 | |
6 months ago | over 2 years ago | |
Python | Python | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dheater
- D(HE)ater
-
CVE-2002-20001 - disable Diffie-Hellman (DHE) key exchange on everything
I was going off what the document at https://github.com/Balasys/dheater suggests in that disabling it in pretty much everything.
- CVE-2002-20001 recommends disabling Diffie-Hellman on Apache and nginx
- GitHub - Balasys/dheater: D(HE)ater is a security tool can perform DoS attack by enforcing the DHE key exchange.
- D(HE)ater is a security tool can perform DoS attack by enforcing the DHE key exchange
- Server overload by enforcing DHE key exchange using minimal bandwidth
CVE-2021-37740
What are some alternatives?
ssl-config-generator - Mozilla SSL Configuration Generator
opencve - CVE Alerting Platform
SBSCAN - SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive information/unauthorized for specified sites and scan and validate spring related vulnerabilities]
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
poc - Proof of Concepts
expbox - Vulnerability Exploitation Code Collection Repository
Dossify
stm32f1-picopwner - Dump read-out protected STM32F1's with a Pi Pico - A Pi Pico implementation of @JohannesObermaier's, Marc Schink's and Kosma Moczek's Glitch and FPB attack to bypass RDP (read-out protection) level 1 on STM32F1 chips
PocOrExp_in_Github - Automatically Collect POC or EXP from GitHub by CVE ID. If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/
Heartbleed - Heartbleed vulnerability exploited 🩸
DDoS-Ripper - DDos Ripper a Distributable Denied-of-Service (DDOS) attack server that cuts off targets or surrounding infrastructure in a flood of Internet traffic