Trouble Extracting Hash from PKCS#8 Encrypted Private Key for Cracking – OpenSSH

I have an encrypted private key for OpenSSH that I need to crack the passphrase for. However, tools like ssh2john.py and openssl2john.py fail to parse the key. Here’s what I’ve tried so far:
Key Format Check
Running openssl asn1parse -in c… Continue reading Trouble Extracting Hash from PKCS#8 Encrypted Private Key for Cracking – OpenSSH

Why does PEM Base64 created by `openssl pgen` not match the DER file passed in?

In experimenting with openssl on the Linux command line with elliptic curve secp256k1 I encountered a strange situation where on converting a DER private key file to PEM format using openssl pgen the Base64 in the PEM file does not match t… Continue reading Why does PEM Base64 created by `openssl pgen` not match the DER file passed in?

How do I get openssl s_client to output all information needed to analyze a TLS session in wireshark?

I’m trying to figure out why I’m seeing an
ssl3_read_n:unexpected eof while reading:/var/jenkins/workspace/pfSense-CE-snapshots-2_7_2-main/sources/FreeBSD-src-RELENG_2_7_2/crypto/openssl/ssl/record/rec_layer_s3.c:304

AFTER it successfully… Continue reading How do I get openssl s_client to output all information needed to analyze a TLS session in wireshark?

Does the Simplified Handshake in TLS 1.3 Increase Susceptibility to SSL/TLS Flood Attacks?

While analyzing the handshake process in TLS 1.3 and comparing it to TLS 1.2, I began to wonder if the simplified handshake structure in TLS 1.3 introduces new vulnerabilities. This concern is particularly relevant in scenarios involving S… Continue reading Does the Simplified Handshake in TLS 1.3 Increase Susceptibility to SSL/TLS Flood Attacks?

Intermediate issuer field didn’t match its CA subject field

While debugging yesterday’s Cloudflare incident, I found out their intermediate certificate issuer field differ from its signing CA subject, despite the AKI/SKI were correct.
Here’s the relevant CA info,
❯ openssl x509 -noout -text -in ~/D… Continue reading Intermediate issuer field didn’t match its CA subject field

Intermediate issuer field didn’t match its CA subject field

While debugging yesterday’s Cloudflare incident, I found out their intermediate certificate issuer field differ from its signing CA subject, despite the AKI/SKI were correct.
Here’s the relevant CA info,
❯ openssl x509 -noout -text -in ~/D… Continue reading Intermediate issuer field didn’t match its CA subject field

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)

November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities (… Continue reading Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)