Skip to content

Instantly share code, notes, and snippets.

View ParasoftExamples's full-sized avatar

Parasoft ParasoftExamples

  • Parasoft
View GitHub Profile
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_14_exploit.log
Created October 23, 2018 19:37
[*] 192.168.56.102:4443 - Sending Client Hello...
[*] 192.168.56.102:4443 - SSL record #1:
[*] 192.168.56.102:4443 - Type: 22
[*] 192.168.56.102:4443 - Version: 0x0301
[*] 192.168.56.102:4443 - Length: 86
[*] 192.168.56.102:4443 - Handshake #1:
[*] 192.168.56.102:4443 - Length: 82
[*] 192.168.56.102:4443 - Type: Server Hello (2)
[*] 192.168.56.102:4443 - Server Hello Version: 0x0301
[*] 192.168.56.102:4443 - Server Hello random data: f6150b7136c5047cc899660b
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_13_metasploit_output2.log
Created October 23, 2018 19:28
Global
======
No entries in data store.
Module: scanner/ssl/openssl_heartbleed
======================================
Name Value
---- -----
CHOST
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_12
Created October 23, 2018 19:27
msf auxiliary(scanner/ssl/openssl_heartbleed) > set verbose true
verbose => true
msf auxiliary(scanner/ssl/openssl_heartbleed) > set rhosts 192.168.56.102
rhosts => 192.168.56.102
msf auxiliary(scanner/ssl/openssl_heartbleed) > set RPORT 4443
RPORT => 4443
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_11_Metasploit_Output.log
Created October 23, 2018 19:26
Matching Modules
================
Name Disclosure Date Rank Description
---- ---------- ----- ------------
auxiliary/scanner/ssl/openssl_heartbleed 2014-04-07 normal OpenSSL Heartbeat
auxiliary/server/openssl_heartbeat_client_memory 2014-04-07 normal OpenSSL Heartbeat
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_10
Created October 23, 2018 19:23
$ pwd /home/USER/heartbleed
$ chmod +x run_lighttpd.sh
$ ./run_lighttpd.sh
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_10_run_lighttpd.sh
Created October 23, 2018 19:22
#!/usr/bin/env bash
LD_LIBRARY_PATH=’/home/USER/heartbleed/env/lib:/home/USER/insure/lib’ \
/home/USER/heartbleed/env/sbin/lighttpd \
-D \
-f /home/USER/hearbleed/lighttpd.conf
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_9_lighttpd.conf
Created October 23, 2018 19:21
server.modules = (
"mod_openssl",
"mod_access",
"mod_accesslog",
)
server.port = 8080
server.username = "USER"
server.groupname = "GROUP"
server.document-root = "/home/USER/heartbleed/srv"
server.errorlog = "/home/USER/heartbleed/lighttpd_error.log"
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_7.html
Created October 23, 2018 19:16
<html>
<head>
<title>Heartbleed Demo</title>
</head>
<body>
<h1>Hello world!</h1>
</body>
</html>
@ParasoftExamples
ParasoftExamples / Insure++_Heartbleed_5.sh
Created October 23, 2018 19:15
#!/usr/bin/env bash
OPENSSL_PATH=’/home/USER/heartbleed/env’
INSURE_PATH=’/home/USER/insure’
MY_LIBS=’-linsure -linsure_mt -ldl’
MY_LIB_PATHS="-L${OPENSSL_PATH}/lib -L${INSURE_PATH}/lib"
MY_LD_LIB_PATHS="${OPENSSL_PATH}/lib:${INSURE_PATH}/lib"
MY_FLAGS="$MY_LIB_PATHS $MY_LIBS"
CC="$(command -v gcc)" \
CXX="$(command -v g++)" \
@ParasoftExamples
ParasoftExamples / parameterized_test_example_8.java
Created September 7, 2018 21:12
Junit Parameterized Tests Example 8
public class LoanProcessorParameterizedTest {
@ParameterizedTest(name="Run {index}: loanAmount={0}, downPayment={1}, availableFunds={2}, expectApproved={3}, expectedMessage={4}")
@MethodSource("testRequestLoan_Parameters")
public void testRequestLoan(float loanAmount, float downPayment, float availableFunds,
boolean expectApproved, String expectedMessage) throws Throwable
{
...
}