malectricasoftware
/
moment
mirror of https://github.com/malectricasoftware/moment.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Quick sequence analyzer for finding timing attacks in web contexts
7 Commits
1 Branch
0 Tags
30 KiB
Python 100%
 
Go to file
Tonabrix1 43dff2532d
Update README.md 		2024-08-21 07:18:05 -04:00
README.md Update README.md 2024-08-21 07:18:05 -04:00
moment.py fixed a bug in analyze mode where headers weren't parsed; changed the default body type to text 2024-08-21 06:40:15 -04:00

README.md

Moment

Quick sequence analyzer for finding timing attacks in web contexts

Implemented

Extremely fast dispatch of responses and automatic substring iteration for sequence payloads, for example:

Say the sequence used it a password "Pa$", the tool will sent each substring "P", "Pa", "Pa", and "Pa$$", then order the responses by response speed

If the tool finds that the responses are ordered the same as the sequence above, it will prompt the user that a timing attack is very likely possible

Single packet mode which sends requests in an http/2 single packet attack to reduce/remove network jitter

TODO

Implement response timing and analysis for single packet attacks to take full advantage of reduced network jitter