andresriancho / pico

Tool to identify and exploit timing attacks
GNU General Public License v3.0
10 stars 6 forks source link

Pico

Tool to identify and exploit timing attacks.

Timing attacks were a completely unknown field to me, so I took a lot of notes comparing previously developed tools, measurement and statistical analysis methods. The notes can be found in the wiki.

Install

virtualenv pico-venv
source pico-venv/bin/activate

git clone git@github.com:andresriancho/pico.git
cd pico
pip install -r requirements.txt

Starting Target Web Application

Check the django-rest-framework-timing repository for instructions on how to start a vulnerable application.

Getting Timing Samples

Please note that this tool is Linux-specific and requires root privileges to run due to the OS tricks implemented in the os_utils.py module.

Edit the constants in timing-collector.py and then:

sudo -s -H
source pico-venv/bin/activate

cd pico
python timing-collector.py sample-name

Analyzing Samples

Edit the token values in graph-results.py and then:

python graph-results.py sample-name