Re: Tools to exercise SSL implementation

From: Jose Nazario (joseat_private)
Date: Wed Oct 03 2001 - 15:28:18 PDT

Next message: Crist J. Clark: "Re: Possible syslogd DoS ?"

Previous message: Cushing, David: "Tools to exercise SSL implementation"
In reply to: Cushing, David: "Tools to exercise SSL implementation"
Next in thread: Mike Murray: "Re: Tools to exercise SSL implementation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 3 Oct 2001, Cushing, David wrote:

> Is anyone aware of a tool that will send bogus and/or maliciously
> crafted packets to an SSL enabled application?

start with the applications in the OpenSSL distribution. a few exist which
effectively act like an ssl telnet. ISTR it being like "s_client" or
something like that.

there are also some ssl telnet tools. some web searches should help you
out.

no need to reinvent the wheel.

____________________________
jose nazario						     joseat_private
	      	     PGP: 89 B0 81 DA 5B FD 7E 00  99 C3 B2 CD 48 A0 07 80
				       PGP key ID 0xFD37F4E5 (pgp.mit.edu)

Next message: Crist J. Clark: "Re: Possible syslogd DoS ?"
Previous message: Cushing, David: "Tools to exercise SSL implementation"
In reply to: Cushing, David: "Tools to exercise SSL implementation"
Next in thread: Mike Murray: "Re: Tools to exercise SSL implementation"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Oct 03 2001 - 15:39:50 PDT