Tutorials

THC-SSL-DOS – DoS Tool Against Secure Web-Servers and for Testing SSL-Renegotiation

THC is The Hacker’s Choice. They are a group of hackers from Germany. Thc-SSL-dos is used for checking whether a website or server is enabled with SSL-renegotiation, thereby checking for renegotiation vulnerability (CVE-2009-3555).

SSL renegotiation is the process of renegotiating a client at the time of authentication. This tools sends SSL requests(Client Hello) to a webserver & then rejects the reply from the server(Server Hello) multiple times.

So eventually when the server tries to renegotiate during authentication, the client rejects it and thereby crashes the server making it a Denial of Service attack.

Also, this proves that the server is vulnerable to SSL-renegotiation vulnerability.

Homepage: http://www.thc.org/thc-ssl-dos

Options

Syntax: thc-ssl-dos <options> ip port
-h -Help
-l <n> Limit parallel connections [default: 400]

Lab : Perform an SSL stress test on the router HTTPS login page

NOTE: This lab causes a DOS attack, it may temporary disable your target. Please use this tool wisely. Never use it on a company network without an agreement.

In this lab, we perform a dos attack on the https login page of the router web-based control panel. The SSL-dos sends requests to the SSL/HTTPS server.

When receiving acknowledgments, it rejects before handshake occurs. Thus the server tries again & again if SSL-renegotiation is enabled. Here the router ip is 192.168.1.1 and HTTPS login page is running on port 443

Command: thc-ssl-dos 192.168.1.1 443 –accept
Starting THC-SSL-DOS
Verbose Operation

Now try to login to the page https://192.168.1.1 <replace with yours>

Router Login being denied

References:

http://www.pierobon.org/ssl/ch2/detail.htm

http://www.pierobon.org/ssl/ch2/diagram.htm

Ravi Sankar

Recent Posts

Playwright-MCP : A Powerful Tool For Browser Automation

Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…

2 weeks ago

JBDev : A Tool For Jailbreak And TrollStore Development

JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…

2 weeks ago

Kereva LLM Code Scanner : A Revolutionary Tool For Python Applications Using LLMs

The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…

2 weeks ago

Nuclei-Templates-Labs : A Hands-On Security Testing Playground

Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…

2 weeks ago

SSH-Stealer : The Stealthy Threat Of Advanced Credential Theft

SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…

2 weeks ago

ollvm-unflattener : A Tool For Reversing Control Flow Flattening In OLLVM

Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…

2 weeks ago