• Home
• de.rub.nds.tlsattacker
• Attacks
• 3.7.1
• source code
• BaseDrownAttacker.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

de.rub.nds.tlsattacker.attacks.impl.drown.BaseDrownAttacker Maven / Gradle / Ivy

/**
 * TLS-Attacker - A Modular Penetration Testing Framework for TLS
 *
 * Copyright 2014-2021 Ruhr University Bochum, Paderborn University, Hackmanit GmbH
 *
 * Licensed under Apache License, Version 2.0
 * http://www.apache.org/licenses/LICENSE-2.0.txt
 */

package de.rub.nds.tlsattacker.attacks.impl.drown;

import static de.rub.nds.tlsattacker.util.ConsoleLogger.CONSOLE;

import de.rub.nds.modifiablevariable.util.ArrayConverter;
import de.rub.nds.tlsattacker.attacks.config.BaseDrownCommandConfig;
import de.rub.nds.tlsattacker.attacks.constants.DrownVulnerabilityType;
import de.rub.nds.tlsattacker.attacks.impl.Attacker;
import de.rub.nds.tlsattacker.core.config.Config;
import de.rub.nds.tlsattacker.core.exceptions.ConfigurationException;
import java.io.BufferedReader;
import java.io.FileNotFoundException;
import java.io.FileReader;
import java.io.IOException;
import java.util.ArrayList;
import java.util.List;

abstract class BaseDrownAttacker extends Attacker {

    // Raw bytes of captured Premaster secrets to be decrypted
    protected List premasterSecrets;

    public BaseDrownAttacker(BaseDrownCommandConfig config, Config baseConfig) {
        super(config, baseConfig);

        if (config.isExecuteAttack()) {
            String secretsPath = config.getPremasterSecretsFilePath();
            if (secretsPath == null) {
                throw new ConfigurationException("Premaster secrets file is required for the attack");
            }

            FileReader secretsReaderUnbuffered;
            try {
                secretsReaderUnbuffered = new FileReader(secretsPath);
            } catch (FileNotFoundException e) {
                throw new ConfigurationException("Premaster secrets file not found");
            }
            BufferedReader secretsReaderBuffered = new BufferedReader(secretsReaderUnbuffered);

            premasterSecrets = new ArrayList();
            String line;

            try {
                while ((line = secretsReaderBuffered.readLine()) != null) {
                    byte[] secret = ArrayConverter.hexStringToByteArray(line);
                    premasterSecrets.add(secret);
                }
                secretsReaderBuffered.close();
                secretsReaderUnbuffered.close();
            } catch (IOException e) {
                throw new RuntimeException(e);
            }
        }
    }

    @Override
    public Boolean isVulnerable() {
        DrownVulnerabilityType type = getDrownVulnerabilityType();
        switch (type) {
            case GENERAL:
                CONSOLE.error("Server is vulnerable to the full General DROWN attack");
                return true;
            case SPECIAL:
                CONSOLE.error("Server is vulnerable to the full Special DROWN attack");
                return true;
            case SSL2:
                CONSOLE.warn("Server supports SSL2, but not any weak cipher suites, so is not vulnerable to DROWN");
                return false;
            case NONE:
                return false;
            case UNKNOWN:
                CONSOLE.info("Could not execute Workflow, check previous messages or increase log level");
                return null;
            default:
                return null;
        }
    }

    public abstract DrownVulnerabilityType getDrownVulnerabilityType();

}