CVE-2017-15361

$2 hardware SSH keys storage

CedarKey Security Kit Secure SSH Key Storage This project is mostly intended to protect from "software" (trojans, etc) extraction of ssh key and to provide more reliable method of storing keys than just keeping them on disk storage It might not be as protected as smartcard against all physical attacks, however in some cases, it is more protected as it's transpa

Simple PowerShell script to check whether a computer is using an Infineon TPM chip that is vulnerable to CVE-2017-15361.

Infineon-CVE-2017-15361 Simple PowerShell script to check whether a computer is using an Infineon TPM chip that is vulnerable to CVE-2017-15361 IMPORTANT: THIS MUST BE EXECUTED AS ADMINISTRATOR!! This script only works on Windows 81 and Windows Server 2012 or later releases of Windows The script was reused from Microsoft: portalmsrcmicrosoftcom/en-US/security-gu

Bro plugin to check if certificates are affected by CVE-2017-15361

Johanna::ROCA This plugin implements detection of CVE-2017-15361 keys; it is a reimplementation of the source available at githubcom/crocs-muni/roca This plugin provides two new BIFs that can check public keys: roca_vulnerable_cert checks if a certificate is vulnerable roca_vulnerable_mod checks if a modulus is vulerable This plugin also ships with a script that is

Paranoid's library contains implementations of checks for well known weaknesses on cryptographic artifacts.

Project Paranoid Overview Paranoid project checks for well known weaknesses on cryptographic artifacts such as public keys, digital signatures and general pseudorandom numbers This library contains implementations and optimizations of existing work found in the literature The existing work showed that the generation of these artifacts was flawed in some cases The following

Windows tool that analyzes your computer for Infineon TPM weak RSA keys (CVE-2017-15361)

RocaCmTest Windows tool that analyzes your TPM and certificates for Infineon weak RSA keys (CVE-2017-15361) The tool is directly inspired by this GitHub project (githubcom/crocs-muni/roca) and uses its detection logic This project just represents a more user-friendly and comprehensive version of detecting the vulnerability It re-uses and expands the project structure

Analysis of the update of TPM firmware

Analysis of the update of TPM firmware What is it about? TPM (Trusted Platform Module) devices have many features and contain sensitive information They can be used to store private keys, encrypt hard drives, attest that the boot went without unexpected components, etc Sometimes, vulnerabilities occur, such as ROCA (CVE-2017-15361, crocsfimunicz/public/papers/rsa_

Bro plugin to check if certificates are affected by CVE-2017-15361

Johanna::ROCA This plugin implements detection of CVE-2017-15361 keys; it is a reimplementation of the source available at githubcom/crocs-muni/roca This plugin provides two new BIFs that can check public keys: roca_vulnerable_cert checks if a certificate is vulnerable roca_vulnerable_mod checks if a modulus is vulerable This plugin also ships with a script that is

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

Detect Trusted Platform Modules Vulnerable to CVE-2017-15361 This repository provides content for aiding DoD administrators in detecting systems that have an enabled Trusted Platform Module (TPM) that is vulnerable to CVE-2017-15361 and is a companion to Information Assurance Advisory RSA Key Generation Vulnerability Affecting Trusted Platform Modules The files in this reposit

ROCA attack on vulnerability CVE-2017-15361

ROCA-attack-on-vulnerability-CVE-2017-15361 This repository contains the thesis developed for my bachelor's degree in Mathematical Engineering at Polytechnic of Turin It's a script based on python and sage The goal of the script is to generate an RSA key, evaluete if it's vulnerable by the ROCA attack and performe the ROCA attack Comments in the scripts are in

ROCA attack on vulnerability CVE-2017-15361

ROCA-attack-on-vulnerability-CVE-2017-15361 This repository contains the thesis developed for my bachelor's degree in Mathematical Engineering at Polytechnic of Turin It's a script based on python and sage The goal of the script is to generate an RSA key, evaluete if it's vulnerable by the ROCA attack and performe the ROCA attack Comments in the scripts are in

WMCTF 2023_OFFICAL_WRITE-UP_CN [TOC] WEB ez_java_again Imagefile?url1=file:///%25%36%36%25%36%63%25%36%31%25%36%37%23java AnyFileRead /admin///////////////flag ezblog two tricks, one is db trick, the other is pm2 trick Intended solution Attachement given TypeScript source code。 The comment in TypeScript about /post/:id/edit is misleading，The parameter type

Go package that checks if RSA keys are vulnerable to ROCA / CVE-2017-15361

rocacheck Package rocacheck is a Go implementation of the key fingerprint algorithm that checks if an RSA key was generated by broken Infineon code and is vulnerable to factorization via the Return of Coppersmith's Attack (ROCA) / CVE-2017-15361

Implementation of the ROCA attack

Implementation of the ROCA attack (CVE-2017-15361) This is the implementation of the paper Return of the Coppersmith attack The implementation is in python 27 and uses the Howgrave-Graham code from RSA-and-LLL-attacks For the detection of vulnerable keys, the code from the original authors of the paper is used (detectpy) crocs-muni PR's welcome! Usage $ python rocapy