takeshixx
/ hb-test.py
Last active
April 14, 2025 17:04
OpenSSL heartbeat PoC with STARTTLS support.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| """ | |
| Author: takeshix <[email protected]> | |
| PoC code for CVE-2014-0160. Original PoC by Jared Stafford ([email protected]). | |
| Supportes all versions of TLS and has STARTTLS support for SMTP,POP3,IMAP,FTP and XMPP. | |
| """ | |
| import sys,struct,socket | |
| from argparse import ArgumentParser |
hlein
/ hb-test.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| import sys | |
| import struct | |
| import socket | |
| import time | |
| import select |
rshipp
/ hb-test-orig.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
Heartbeat test/PoC, original and feature bloat versions. http://www.exploit-db.com/exploits/32745/
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/python | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| import sys | |
| import struct | |
| import socket | |
| import time | |
| import select |
mwgamera
/ hb-test.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
OpenSSL heartbeat PoC with SMTP and XMPP STARTTLS support.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| import sys | |
| import struct | |
| import socket | |
| import time | |
| import select |
EdwardsBean
/ hb-test.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| import sys | |
| import struct | |
| import socket | |
| import time | |
| import select |
tahajahangir
/ hb_test.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
Added threading/loop support (serveral features from different forks also added)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| # Modifed to send heartbeat requests for both TLS v1.1 and v1.2 | |
| import sys | |
| import struct | |
| import socket |
tintinweb
/ hb-test.py
Last active
August 29, 2015 13:58
— forked from takeshixx/hb-test.py
CVE-2014-0160 - OpenSSL tcp heartbeat PoC with STARTTLS, XMPP, Proxy CONNECT (SSL) support. Also includes some TLS record fixups, and features like file-dumping, TLS protocol version selection (HBMsg only)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python2 | |
| # Quick and dirty demonstration of CVE-2014-0160 by Jared Stafford ([email protected]) | |
| # The author disclaims copyright to this source code. | |
| # | |
| # tintinweb | https://github.com/tintinweb | |
| # added proxy CONNECT support | |
| # added HB packet variation for IPS testing | |
| # added valid HB message padding (without HMAC) | |
| # added options for custom HeartBeat.len, payload, fixed size TLSRecord.len, padding |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # CONFIG | |
| SNMP_COMMUNITY=public | |
| SYSCONTACT=dan | |
| SYSLOCATION=Berlin | |
| # get packages | |
| apt-get install snmpd xinetd vim | |
| mkdir -p /opt/observium && cd /opt |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # btrfs-undelete | |
| # Copyright (C) 2013 Jörg Walter <[email protected]> | |
| # This program is free software; you can redistribute it and/or modify it under | |
| # the term of the GNU General Public License as published by the Free Software | |
| # Foundation; either version 2 of the License, or any later version. | |
| if [ ! -b "$1" -o -z "$2" -o -z "$3" ]; then | |
| echo "Usage: $0 <dev> <file/dir> <dest>" 1>&2 | |
| echo |
cocoalabs
/ gist:2fb7dc2199b0d4bf160364b8e557eb66
Created
August 15, 2016 21:50
Color Terminal for bash/zsh etc..
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| man() { | |
| env \ | |
| LESS_TERMCAP_mb=$(printf "\e[1;31m") \ | |
| LESS_TERMCAP_md=$(printf "\e[1;31m") \ | |
| LESS_TERMCAP_me=$(printf "\e[0m") \ | |
| LESS_TERMCAP_se=$(printf "\e[0m") \ | |
| LESS_TERMCAP_so=$(printf "\e[1;44;33m") \ | |
| LESS_TERMCAP_ue=$(printf "\e[0m") \ | |
| LESS_TERMCAP_us=$(printf "\e[1;32m") \ | |
| man "$@" |