Dumps the live traffic of an ssl-encrypted stream with sslsnoop 0.6

sslsnoop is a Python module that dumpss the live traffic of an ssl-encrypted stream.
HOWTO:

Works if scapy doesn’t drop packets. using pcap instead of SOCK_RAW  helps a lot now.

Works better on interactive traffic with slow traffic.

Dumps one file by fd in outputs/

Attaching a process is quickier with –addr 0xb788aa98 as provided by abouchet.py
INFO:abouchet:found instance < class ‘ctypes_openssh.session_state’ > @ 0xb788aa98

sudo python finder.py    # try ssh, sshd and ssh-agent…
sudo python openssh.py `pgrep ssh`
sudo python openssh.py `pgrep ssh` –server # for sshd
sudo python openssl.py `pgrep ssh-agent` # dump RSA and DSA keys

and go and check outputs/ :

Requirements:

· Python

Download

NJ Ouchn

"Passion is needed for any great work, and for the revolution, passion and audacity are required in big doses"
Strengthening Security: ToolsWatch Welcomes Dr. Magda Lilia Chelly and Vivek Ramachandran to Black Hat Arsenal’s Board of Review

Strengthening Security: ToolsWatch Welcomes Dr. Magda Lilia Chelly and Vivek Ramachandran to Black Hat Arsenal’s Board of Review

GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

Black Hat Arsenal 2024 Next Stop Singapore !

Black Hat Arsenal 2024 Next Stop Singapore !

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community