Skip to content

Releases: tls-attacker/TLS-Attacker

TLS-Attacker 3.1

15 Aug 16:47
@ic0ns ic0ns
3.1
538a98e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 3.1

Bug fix released.
-temporary fix of montgomery curve unsupported operation exception
-fix for explicit sni setting

Assets 2
Loading

TLS-Attacker 3.0

09 Jul 16:10
@ic0ns ic0ns
3.0
4066911
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 3.0

DTLS 1.0 and DTLS 1.2 support (Thanks to Paul Fiterau Brostean)
TLS ECCPWD Support (Dragonfly) (Thanks to Alexander Freiherr von Buddenbrock)
Integration of new EC Library:
-TLS-Attacker now supports computations on invalid curve points out of the box
-All non ECDSA code is now more streamlined
All standardized elliptic curves are now functional (ECDSA excluded)
Support for CCM_8 ciphersuites
Cleaner Client API (ConnectionDelegate)
Removed HostnameDelegate
Removed a lot of legacy code which was not used anymore
Fixed a bug which prevented Camellia GCM to not work properly
Server DHE PublicKey now gets correctly computed at runtime
ServerTcpTransportHandler now correctly handles Timeouts
Fixed selection of parameters server side on various locations
KeyShareExtension in Draft versions now works better
Fixed an off by one error in nearly empty WorkflowTraces when look at them with the WorkflowTraceUtil
Unicode Domains are now supported
SNI is now handled better by the client delegate
RSA PMS ProtocolVersion is now a modifiableVariable and can be modified more easily
WorkflowExecutor now throws an exception if BouncyCastle is not loaded at runtime
Fixed a bug in the parsing of long server hello lenght fields
Fixed a bug in the extraction of Fingerprints in the BleichenbacherAttack

Lots of smaller fixes

Assets 2
Loading

TLS-Attacker 2.9

11 May 18:00
@ic0ns ic0ns
2.9
2b540ac
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.9

-various regressions fixted (mostly STARTTLS)
-bug fixes

Assets 2
Loading

TLS-Attacker 2.8

01 Mar 15:30
@ic0ns ic0ns
2.8
0a176ae
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.8 Pre-release
Pre-release

-Bug fix in Attacks.jar
-TLS 1.3 fix
-Attribution preparations

Assets 2
Loading

TLS-Attacker 2.7

21 Feb 21:38
@ic0ns ic0ns
2.7
3c772c6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.7

-ChachaPoly support - thanks @rflume
-TLS-Compression - thanks @columbkh
-Reworked Lucky13 - thanks @malt3
-Bug fixes

Assets 2
Loading

TLS-Attacker 2.6

26 Sep 10:05
@jurajsomorovsky jurajsomorovsky
v2.6
626a7ee
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.6

-Better support for parallel executions
-GOST support
-Various Bugfixes
-A lot of refactoring
-TLS 1.3 (RFC) support
-Automatic certificate selection (server)
-Better PaddingOracle detection / more sophisticated strategies
-Better logging

Assets 3
Loading

TLS-Attacker 2.5

01 Jun 14:40
@jurajsomorovsky jurajsomorovsky
v2.5
6d4de77
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.5
  • Null Ciphers
  • Anon Ciphers
  • Bugfixes
  • EarlyCCS improvements
  • STARTTLS
  • pretty XML
Assets 2
Loading

TLS-Attacker 2.4

09 Feb 13:45
@jurajsomorovsky jurajsomorovsky
2.4
711d994
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.4
  • TLS-PSK for client and server
  • DROWN attack test
  • TLS forensic (for reparsing packets)
  • Recording transport handler (the protocol flow can be recorded and resent again)
  • bug fixes
Assets 3
Loading

TLS-Attacker 2.3

05 Jan 15:35
@ic0ns ic0ns
2.3
185abd4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.3
  • Readded Attack Code
  • Added Config Display Filter
  • Fixed bugs in Client Authentication
  • Minor Tweaks
Assets 2
Loading

TLS-Attacker 2.2

12 Dec 12:57
@jurajsomorovsky jurajsomorovsky
v2.2
d8aff45
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
TLS-Attacker 2.2
  • 0-RTT replay attack examples
  • Better padding oracle detection checks (CBC and Bleichenbacher)
  • Small bug fixes found during fuzzing
Assets 3
Loading