The Heartbleed bug (CVE-2014-0160) is a severe implementation flaw in the OpenSSL library, which enables attackers to steal data from the memory of the victim server. The contents of the stolen data depend on what is there in the memory of the server. It could potentially contain private keys, TLS session keys, user names, passwords, credit cards, etc. In this homework we will be simulation and observing a Heartbleed attach.
For this assignment you need to Download a specific Ubuntu Virtual ( SEEDUbuntu-12.04) machine
You Also need the following Python code to excute the Attack download from here below files. Files attached below.
Important Notes:
undefined
- Show with screen shots and explanation how you set up the lab environment
undefined
- You need to show and explain every step even when you run the Python file ( how you ran it and explain the code )
- Do not forget to in cloud screen shots while you are executing the tasks
- Again make sure you have good explanation for each step.
0 comments