Some notes about how TLS v1.3 works. This is a follow-up of the previous episode about TLS v1.2. As before, the goal is to have a high-level overview about how the protocol works, what is the role of the different messages and be able to understand (and debug) a network traffic dump.

CSRF and DNS-rebinding to RCE in Selenium Server (Grid)

Feb 7 2022

CVE-2022-28108 CVE-2022-28109

Vulnerabilities in found on the WebDriver endpoints of Selenium Server (Grid).

DNS rebinding vulnerability to RCE in geckodriver

Feb 7 2022

CVE-2021-4138

A DNS rebinding vulnerability I found in geckodriver which could be used to execute arbitrary shell commands. This is bug #1652612 and CVE-2021-4138.

Introduction to TLS v1.2

Nov 30 2021

Some notes about how TLS v1.2 (Transport Layer Security) works. The goal explain what is going on in a network traffic dump, the role of the different TLS extensions, the impact of the different cipher suites on security, etc. It includes several diagrams and many references.

Introduction to the Diffie-Hellman key exchange

Oct 19 2021

The Diffie-Hellman (DH) key exchange (and variants thereof) is widely used in many protocols (such as TLS, SSH, IKE (IPSec), Signal, etc.) to bootstrap some symmetric key material which may then be used to secure communication channel between two parties. This introduction focuses on the different ways the DH key exchange is used in practice in several protocols (especially TLS) and the impact of these different approaches on the security. This is intended as a prelude for the upcoming next episodes about how TLS works.

Page 1 of 8 | Previous page | Next page | JSON Feed | Atom Feed