Skip to content
/ x509bf Public

Brute-force for x509 private keys with DEK headers

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rdner/x509bf

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.github/workflows
.github/workflows
 
 
bf
bf
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
main.go
main.go
 
 

Repository files navigation

CLI tool for brute-forcing private keys with DEK headers

This is a CLI tool that tries to use multiple passphrases from a given wordlist to decrypt an encrypted private key that has a DEK header.

What is DEK header?

In some encrypted private keys you can see a special header that indicates the encryption algorithm, like so:

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,FD9831D6BE43C1FA

If a private key starts with a similar header it's likely supported by this tool.

Usage

Usage of ./x509bf:
 -c uint     level of concurrency, number of cores is the default (default 8)
 -k string   path to the encrypted PEM file
 -l string   path to the wordlist to try, e.g. /usr/share/wordlists/rockyou.txt
 -v          verbose logging (slower)

Disclaimer

This tool is supposed to be used for research purposes only and must be NOT used for illegal actions.

About

Brute-force for x509 private keys with DEK headers

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

Stable release Latest
Oct 23, 2021

Languages