Happy 0-day to you
Happy 0-day to you
Happy 0-day dear Internet
Happy 0-day to you !
Test your servers for Heartbleed (CVE-2014-0160) : ►http://filippo.io/Heartbleed
Upgrade your servers today !
Happy 0-day to you
Happy 0-day to you
Happy 0-day dear Internet
Happy 0-day to you !
Test your servers for Heartbleed (CVE-2014-0160) : ►http://filippo.io/Heartbleed
Upgrade your servers today !
Other test tool online: ▻http://possible.lv/tools/hb
And a command-line tool, to run locally (warning: only HTTPS and SMTP currently) ▻https://gist.github.com/takeshixx/10107280
And to see if you are attacked/probed ▻http://seenthis.net/messages/245316
Another command-line tool, in Go ▻https://github.com/titanous/heartbleeder
The excellent online site ▻https://www.ssllabs.com now also tests the HeartBleed vulnerability.
@Fil SeenThis en HTTPS a bien d’autres problèmes : The certificate is not trusted because it is self-signed. The certificate is not valid for any server names. The certificate expired on 01/12/12 16:37. The current time is 04/09/14 10:01.
Test your server with nmap : ▻https://svn.nmap.org/nmap/scripts/ssl-heartbleed.nse
Et la démonstration pratique : récupération de la clé privée SSL d’Nginx...
▻https://www.youtube.com/watch?v=BdQTnysDnjA