mirror of https://github.com/adulau/ssldump.git synced 2024-09-18 00:38:14 +00:00

ssldump - (de-facto repository gathering patches around the cyberspace)

ja3 ja3-signature-creation network-analysis network-monitoring ssldump sslv3 tls tls-traffic tls13

Find a file

William Robinet 4f02d24aeb Update .gitignore, rearrange CI workflows variable definition		2020-09-04 12:01:07 +02:00
.github/workflows	Update .gitignore, rearrange CI workflows variable definition	2020-09-04 12:01:07 +02:00
base	Fix segfault by OOB read on malformed packets (2)	2020-09-03 19:07:21 +02:00
common	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
null	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
ssl	Fix multiple segfault by OOB read because of wrong format string specifier	2020-09-03 19:09:04 +02:00
win32
.gitchangelog.rc	chg: [build] gitchangelogrc configuration added	2019-05-26 08:09:23 +02:00
.gitignore	Update .gitignore, rearrange CI workflows variable definition	2020-09-04 12:01:07 +02:00
_config.yml	Set theme jekyll-theme-minimal	2020-04-28 16:04:47 +02:00
AUTHORS	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
autogen.sh	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
ChangeLog	chg: [doc] release v1.1 - ChangeLog updated	2019-12-28 14:35:36 +01:00
configure.ac	Remove -g from default CFLAGS and check for Clang explicitly	2020-09-04 12:01:03 +02:00
COPYING	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
COPYRIGHT
CREDITS
FILES
INSTALL
INSTALL.W32
Makefile.am	Remove deprecated define	2020-09-04 12:00:53 +02:00
NEWS	Autoconf setup rewritten	2020-08-27 16:20:38 +02:00
README	chg: [doc] clarification about ssldump repository + release v1.1	2019-12-28 14:43:39 +01:00
README.md	Update readme	2020-08-28 10:44:31 +02:00
ssldump.1

README.md

ssldump - (de-facto repository gathering patches around the cyberspace)

Current version of ssldump is v1.1 (released: 2019-12-28) - ChangeLog

This repository is composed of the original SSLDUMP 0.9b3 + a myriad of patches (from Debian and other distributions) + contributions via PR

ssldump is an SSLv3/TLS network protocol analyzer. It identifies TCP connections on the chosen network interface and attempts to interpret them as SSLv3/TLS traffic. When it identifies SSLv3/TLS traffic, it decodes the records and displays them in a textual form to stdout. If provided with the appropriate keying material, it will also decrypt the connections and display the application data traffic.

original and (old) README

Why do you maintain this repository?

Because it's a mess. The software maintenance process for old free (unmaintained) software like ssldump is a complete chaotic process. I do this to ease my pain and this could help other too (but this is just a collateral damage).

Where do you use ssldump?

I used it for a relatively small project called Passive SSL. For more information, Passive SSL Passive Detection and Reconnaissance Techniques, to Find, Track, and Attribute Vulnerable ”Devices”. Additional back-end code available is in the crl-monitor repository.

Release and tagging

Current version of ssldump is v1.1 (released: 2019-12-28) - ChangeLog

Build instructions

On Debian & Ubuntu:

apt install build-essential autoconf libssl-dev libpcap-dev
./autogen.sh
./configure --prefix=/usr/local
make
(optional) make install

On Fedora, Centos & RHEL:

dnf install autoconf automake gcc make openssl-devel libpcap-devel
./autogen.sh
./configure --prefix=/usr/local
make
(optional) make install

Contributing

The contributing policy is simple. If you have a patch to propose, make a pull-request via the interface. If the patch works for me, it's merged.