首页 > 专利查询

SSLv3Poodle攻击漏洞检测工具

SSLv3Poodle攻击漏洞检测⼯具
漏洞编号:CVE-2014-3566
POC如下:
import ssl,socket,sys
SSL_VERSION={铌高
'SSLv2':ssl.PROTOCOL_SSLv2,
'SSLv3':ssl.PROTOCOL_SSLv3,
'SSLv23':ssl.PROTOCOL_SSLv23,
'TLSv1':ssl.PROTOCOL_TLSv1,
压缩空气过滤}
def check_ssl_version(version):
try:
https = ssl.SSLSocket(socket.socket(),ssl_version=(version))
c = t((ip,port))
print version + ' Supported'
return True
except Exception as e:
return False
USAGE = '==========\nKPoodle - SSL version and poodle attack vulnerability detect tool\n==========\nUsage: python kpoodle.py target port(default:443)\n\nby kingx'
try:
ip = sys.argv[1]
except:荸荠去皮机
print USAGE
try:
port = int(sys.argv[2])
except:
port = 443
try:
print ''
s = socket.socket().connect((ip,port))
except Exception as e:
print e
print 'Can not connect to the target!'
try:
print ''
胃蝇
ssl3 = check_ssl_version('SSLv3')
ssl2 = check_ssl_version('SSLv2')
油品分析
ssl23 = check_ssl_version('SSLv23')
tls = check_ssl_version('TLSv1')
if ssl3:
下靶print '\nSSLv3 Poodle Vulnerable!'
else:
print '\nNo SSLv3 Support!'
except Exception as e:
print e
如图:

本文发布于:2024-09-25 05:27:57,感谢您对本站的认可!

本文链接:https://www.17tex.com/tex/4/201082.html

版权声明:本站内容均来自互联网,仅供演示用,请勿用于商业和其他非法用途。如果侵犯了您的权益请与我们联系,我们将在24小时内删除。

上一篇:SET协议与SSL协议的区别
下一篇:HTTPS那些协议:TLS,SSL,SNI,ALPN,NPN
标签:漏洞   过滤   荸荠   油品
留言与评论(共有 0 条评论)
   
验证码:
推荐文章
排行榜
热门标签
Copyright ©2019-2024 Comsenz Inc.Powered by © 易纺专利技术学习网 豫ICP备2022007602号 豫公网安备41160202000603 站长QQ:729038198 关于我们 投诉建议