dheater
Heartbleed
dheater | Heartbleed | |
---|---|---|
9 | 1 | |
170 | 6 | |
-0.6% | - | |
6.9 | 0.0 | |
4 months ago | almost 3 years ago | |
Python | Python | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dheater
- D(HE)ater
-
CVE-2002-20001 - disable Diffie-Hellman (DHE) key exchange on everything
I was going off what the document at https://github.com/Balasys/dheater suggests in that disabling it in pretty much everything.
- CVE-2002-20001 recommends disabling Diffie-Hellman on Apache and nginx
- GitHub - Balasys/dheater: D(HE)ater is a security tool can perform DoS attack by enforcing the DHE key exchange.
- D(HE)ater is a security tool can perform DoS attack by enforcing the DHE key exchange
- Server overload by enforcing DHE key exchange using minimal bandwidth
Heartbleed
What are some alternatives?
ssl-config-generator - Mozilla SSL Configuration Generator
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
SBSCAN - SBSCAN是一款专注于spring框架的渗透测试工具,可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive information/unauthorized for specified sites and scan and validate spring related vulnerabilities]
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pyOpenSSL -- A Python wrapper around the OpenSSL library - A Python wrapper around the OpenSSL library
sslyze - Fast and powerful SSL/TLS scanning library.
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
cerberus - Cerberus is another simple stressing tool simulating DDoS attacks.
Dossify
faraday - Open Source Vulnerability Management Platform
poc - Proof of Concepts
wifiphisher - The Rogue Access Point Framework