Open sajualways opened 5 months ago
Is it possible to send client certificate chain(leaf cert + intermediate cert) using java -jar TLS-Client.jar -connect host:port -cert
Which version are you on?
Anyways, I think this is not possible through the commandline interface. Anything X.509 is a bit of a weakness of TLS-Attacker in the current version. Our next version has reworked this. In the meantime, you would either need to set the certificate in the workflow trace, manually set the certificates in the config or change the code of TLS-Attacker.
I was looking for -key kind of option like for example " -cert "
what does this option do ? -keystore Java Key Store (JKS) file to use as a certificate
Which version are you on?
I am using latest git update
Anyways, I think this is not possible through the commandline interface. Anything X.509 is a bit of a weakness of TLS-Attacker in the current version. Our next version has reworked this. In the meantime, you would either need to set the certificate in the workflow trace, manually set the certificates in the config or change the code of TLS-Attacker.
Can we have a option -cert_chain <> option ?
10:20:22 [main] WARN : Delegate - Could not read certificate java.security.cert.CertificateParsingException: signed overrun, bytes = 1820 at java.base/sun.security.x509.X509CertImpl.parse(X509CertImpl.java:1826) at java.base/sun.security.x509.X509CertImpl.(X509CertImpl.java:194)
at java.base/sun.security.provider.X509Factory.parseX509orPKCS7Cert(X509Factory.java:476)
at java.base/sun.security.provider.X509Factory.engineGenerateCertificates(X509Factory.java:361)
at java.base/java.security.cert.CertificateFactory.generateCertificates(CertificateFactory.java:478)
at de.rub.nds.tlsattacker.core.certificate.PemUtil.readCertificate(PemUtil.java:122)
at de.rub.nds.tlsattacker.core.certificate.PemUtil.readCertificate(PemUtil.java:134)
at de.rub.nds.tlsattacker.core.config.delegate.CertificateDelegate.applyDelegate(CertificateDelegate.java:122)
at de.rub.nds.tlsattacker.core.config.TLSDelegateConfig.createConfig(TLSDelegateConfig.java:67)
at de.rub.nds.tlsattacker.core.config.TLSDelegateConfig.createConfig(TLSDelegateConfig.java:85)
at de.rub.nds.tlsattacker.client.config.ClientCommandConfig.createConfig(ClientCommandConfig.java:111)
at de.rub.nds.tlsattacker.client.main.TlsClient.main(TlsClient.java:52)