Aaron Zauner azet at azet.org
Tue Mar 3 23:43:11 CET 2015


The guys from INRIA published a framework for TLS state machine
fuzzing today. Researchers and Pentesters involved in TLS security
might find this project very useful: https://www.smacktls.com/

Unfortunately it's written in F# and seems to only have been tested
on Windows so far, but it might be possible to port the thing to
other plattforms.

Shorly after the website went online today, it was password
protected and the layout, design and information changed since. It
seems they've also removed their sourcecode 'preview' since (or at
least I'm unable to find it on there). It's still possible to
download it from here:


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Digital signature
URL: <http://lists.cert.at/pipermail/ach/attachments/20150303/15175c7b/attachment.sig>

More information about the Ach mailing list