sliver icon indicating copy to clipboard operation
sliver copied to clipboard
verified publisher icon BishopFox

Information decryption failure and serious failure between pivots and server(bug)

Open fish912 opened this issue 2 years ago • 2 comments

image this part just used in sliver/implant/sliver/transports/pivotclients/pivotclient.go ReadEnvelope function line 379:

  • plaintext, err := p.serverCipherCtx.Decrypt(peerEnvelope.Data) So we need to split the function into two parts,called when the ReadEnvelope function is needed, otherwise the signature authentication should be discarded

The reason is that the 246 lines of ciphertext, err := pivotSession.CipherCtx.Encrypt(keyExRespEnvelope) in the ciphertext, err := pivotSession.CipherCtx.Encrypt(keyExRespEnvelope) of the serverKeyExchange function in the server, the function picture is as follows image path: server/cryptography/cryptography.go line 268.

fish912 avatar Aug 14 '23 09:08 fish912

Do you have a stack trace?

moloch-- avatar Aug 14 '23 15:08 moloch--

Do you have a stack trace?

image when serverKeyExchange, there is an error, then return nothing image and then recive EOF image

image image

when write data,there is no sig, but read data, there is vertify

fish912 avatar Aug 15 '23 06:08 fish912