SensePost, profile picture
Uploaded bySensePost
1,579 views

Heartbleed Overview

This document summarizes the Heartbleed vulnerability that was announced in April 2014. It allowed attackers to read portions of a server's memory and extract private keys and user cookies. The vulnerability was in OpenSSL and affected many major companies. It was possible due to a buffer over-read in the OpenSSL implementation of the TLS Heartbeat Extension. While initially many were vulnerable, within a month most major sites and services had patched the vulnerability. The event highlighted issues with OpenSSL's code quality and maintenance and increased funding to address these issues. It also demonstrated the need for rapid patching of 0-day vulnerabilities and the importance of defense in depth strategies.

Downloaded 24 times
whoami Dominic White CTO @ SensePost We Hack | Build | Train | Scan Stuff @singe / @sensepost dominic@sensepost.com info/research/job @sensepost.com
What Happened • 7 April 2014 – Vulnerability announced to the world with a website, OpenSSL vulnerability announcement and new code release (1.0.1g) – Found by two groups; Google Security Team (Neel Mehta & Condenomicon) • Told that private keys to SSL certificates could be exposed – uh oh • Operating systems had not packaged the new release, so many were vulnerable • Many big name companies were vulnerable; Big Tech names, Banks, Law Enforcement, Intelligence Agencies • Online testers appeared, and were quickly swamped • But ….
What is it? • Vulnerability in a widely used cryptographic library – i.e. lots of Unix things use this to do encryption • Vulnerability specific to SSL Heartbeats – RFC 6520 https://tools.ietf.org/html/rfc6520 • Introduced on Dec 31 2011 by Dr Stephen Henson • Allows you to read parts of a program memory – Buffer Over Read
Demo • Extracting cookies & private SSL keys from a vulnerable server
Why does it work • OpenSSL is just the library, the actual process is something like Apache, Nginx, Dovecot, Exim etc. • These processes have a HEAP, in which data used by the process is stored. – If the process is active, it changes a lot • Certificate private keys are made up of two large prime numbers; we can find these if they were used recently
The slow path to enlightenment • Initial testers looked for vanilla SSL on port 443 using TLS v1.1 – Most famous and first PoC by Jared Stafford; ssltest.py • But: – SSL runs on non-standard ports – Some servers didn’t support TLS v1.1 – SSL can be invoked on clear-text ports with STARTLS • STARTTLS is different for different protocols – Clients are vulnerable too! – Lots of debate about whether keys could be grabbed • CloudFlare challenge cleared that up – IDS signatures were quickly defeated
Meanwhile …. • #heartbleedvirus • Bruce Schneier – “On the scale of 1 to 10, this is an 11.” • I’m not Vulnerable, the scanner said so! • Claims of NSA backdoor bogey men • EVERYBODY CHANGE ALL YOUR PASSWORDS! – NO WAIT, CHANGE THEM AGAIN!
How Bad Was It? • Masscan (Robert Graham) – 615 268 / 28 581 134 – After one month 318 239 • Our clients – 1.8% when it broke – Offered free “complete” scan – 24 / 224 186
Tactical Defence Fix the Vuln • Patch it – OpenSSL >= 1.0.1g – Old versions < 1.0.1 unaffected • Disable it – Firewall, VPN? • Reconfigure it – Disable heartbeats – Enable Perfect Forward Secrecy • IDS it? – Do not rely on this Cleanup • Change certificates – Revoke the old ones • Reset sessions – i.e. invalidate all cookies • Change passwords – Only affected user-stores
Defence in Depth • One 0day shouldn’t ruin your day – But this one was tricky 1. Early alerting 2. Response procedures (IR) 3. Ability to act quickly (devsecops) 4. Avoid heterogeneity/monocultures?
The State of OpenSSL’s Future • Massive amount of legacy code • Incredibly complex to maintain – 2 people effectively doing most of it • C considered harmful today – Pointer arithmetic makes problems • FIPS certification dangerous – Certifies bad crypto & bad implementations • OpenBSD’s OpenSSL rampage -> LibreSSL • OpenSSL just got a ton of funding
Eye Openers • We thought OpenSSL was okay – Ok, lots didn’t, but nobody did anything about it – We think lots of other things are ok – ESR’s Linus’ Law: “Given enough eyeballs, all bugs are shallow” • But! – We found the bug – People actually patched it • Others – The rise of the branded bug – The trail of fakes • Media still drives reactions
Thanks & References • Hackerfantastic – Tool & Presentation • Erratarob – Tool/s & blogs • XKCD – Comics! • Elpartydiablo & xnvx.com – Background

More Related Content

PPTX
Offence oriented Defence
bySensePost
 
PPTX
Rat a-tat-tat
bySensePost
 
PPTX
Improvement in Rogue Access Points - SensePost Defcon 22
bySensePost
 
PDF
The state of wireless security
byFilip Waeytens
 
PDF
Fruit vs Zombies: Defeat Non-jailbroken iOS Malware by Claud Xiao
byShakacon
 
PDF
Heartbleed && Wireless
byLuis Grangeia
 
PPTX
Creating Havoc using Human Interface Device
byPositive Hack Days
 
PPTX
Shmoocon Epilogue 2013 - Ruining security models with SSH
byAndrew Morris
 
Offence oriented Defence
bySensePost
 
Rat a-tat-tat
bySensePost
 
Improvement in Rogue Access Points - SensePost Defcon 22
bySensePost
 
The state of wireless security
byFilip Waeytens
 
Fruit vs Zombies: Defeat Non-jailbroken iOS Malware by Claud Xiao
byShakacon
 
Heartbleed && Wireless
byLuis Grangeia
 
Creating Havoc using Human Interface Device
byPositive Hack Days
 
Shmoocon Epilogue 2013 - Ruining security models with SSH
byAndrew Morris
 

What's hot

PDF
Defcon 22-zoltan-balazs-bypass-firewalls-application-whiteli
byPriyanka Aash
 
PDF
Top 10 Threats to Cloud Security
bySBWebinars
 
PPT
Nomura UCCSC 2009
bydnomura
 
PPTX
External to DA, the OS X Way
byStephan Borosh
 
PDF
Infosecurity.be 2019: What are relevant open source security tools you should...
byB.A.
 
PDF
Hack Attack! An Introduction to Penetration Testing
bySteve Phillips
 
PDF
Defcon 22-wesley-mc grew-instrumenting-point-of-sale-malware
byPriyanka Aash
 
PPTX
BlueHat v17 || A Lustrum of Malware Network Communication: Evolution and Insi...
byBlueHat Security Conference
 
PPTX
BSIDES-PR Keynote Hunting for Bad Guys
byJoff Thyer
 
PDF
Defcon 22-philip-young-from-root-to-special-hacking-ibm-main
byPriyanka Aash
 
PPTX
Kali presentation
byZain Ul abadin
 
PDF
Security events in 2014
byChong-Kuan Chen
 
PPTX
From 1000/day to 1000/sec: The Evolution of Incapsula's BIG DATA System [Surg...
byImperva Incapsula
 
PPTX
How to Protect Yourself From Heartbleed Security Flaw
byConnectSafely
 
PDF
Malware collection and analysis
byChong-Kuan Chen
 
PPTX
2016 TTL Security Gap Analysis with Kali Linux
byJason Murray
 
PPTX
Pentest Apocalypse - SANSFIRE 2016 Edition
byBeau Bullock
 
PDF
Threat Con 2021: What's Hitting my Honeypots
byAPNIC
 
PPTX
[CB16] Facebook Malware: Tag Me If You Can by Ido Naor & Dani Goland
byCODE BLUE
 
PDF
penetration test using Kali linux ppt
byAbhayNaik8
 
Defcon 22-zoltan-balazs-bypass-firewalls-application-whiteli
byPriyanka Aash
 
Top 10 Threats to Cloud Security
bySBWebinars
 
Nomura UCCSC 2009
bydnomura
 
External to DA, the OS X Way
byStephan Borosh
 
Infosecurity.be 2019: What are relevant open source security tools you should...
byB.A.
 
Hack Attack! An Introduction to Penetration Testing
bySteve Phillips
 
Defcon 22-wesley-mc grew-instrumenting-point-of-sale-malware
byPriyanka Aash
 
BlueHat v17 || A Lustrum of Malware Network Communication: Evolution and Insi...
byBlueHat Security Conference
 
BSIDES-PR Keynote Hunting for Bad Guys
byJoff Thyer
 
Defcon 22-philip-young-from-root-to-special-hacking-ibm-main
byPriyanka Aash
 
Kali presentation
byZain Ul abadin
 
Security events in 2014
byChong-Kuan Chen
 
From 1000/day to 1000/sec: The Evolution of Incapsula's BIG DATA System [Surg...
byImperva Incapsula
 
How to Protect Yourself From Heartbleed Security Flaw
byConnectSafely
 
Malware collection and analysis
byChong-Kuan Chen
 
2016 TTL Security Gap Analysis with Kali Linux
byJason Murray
 
Pentest Apocalypse - SANSFIRE 2016 Edition
byBeau Bullock
 
Threat Con 2021: What's Hitting my Honeypots
byAPNIC
 
[CB16] Facebook Malware: Tag Me If You Can by Ido Naor & Dani Goland
byCODE BLUE
 
penetration test using Kali linux ppt
byAbhayNaik8
 

Similar to Heartbleed Overview

PDF
Sullivan heartbleed-defcon22 2014
byCloudflare
 
PDF
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
byGabriella Davis
 
PDF
Heartache and Heartbleed - 31c3
byNick Sullivan
 
PDF
The SSL Problem and How to Deploy SHA2 Certificates
byGabriella Davis
 
PDF
Common crypto attacks and secure implementations
byTrupti Shiralkar, CISSP
 
PPTX
SSL Checklist for Pentesters (BSides MCR 2014)
byJerome Smith
 
PDF
How to exploit heartbleed vulnerability demonstration
byPankaj Rane
 
PDF
SSL: Past, Present and Future
byTiago Mendo
 
PDF
SSL: Past, Present and Future
byLuis Grangeia
 
PPT
Certificates and Web of Trust
byYousof Alsatom
 
PDF
FreeBSD and Hardening Web Server
byMuhammad Moinur Rahman
 
PDF
SSL, X.509, HTTPS - How to configure your HTTPS server
byhannob
 
PDF
Go paranoid
byNisheed KM
 
PDF
Apache web-server-security
byAndrew Carr
 
PDF
SSL State of the Union
bySander Temme
 
PDF
When the internet bleeded : RootConf 2014
byAnant Shrivastava
 
PPTX
Information Security Engineering
byMd. Hasan Basri (Angel)
 
PDF
Unsafe SSL webinar
byWolfgang Kandek
 
PDF
Ssl And Tls Theory And Practice 2nd Rolf Oppliger
byjnixigdcvv335
 
PPTX
Cours4.pptx
byBellaj Badr
 
Sullivan heartbleed-defcon22 2014
byCloudflare
 
1086: The SSL Problem and How to Deploy SHA2 Certificates (with Mark Myers)
byGabriella Davis
 
Heartache and Heartbleed - 31c3
byNick Sullivan
 
The SSL Problem and How to Deploy SHA2 Certificates
byGabriella Davis
 
Common crypto attacks and secure implementations
byTrupti Shiralkar, CISSP
 
SSL Checklist for Pentesters (BSides MCR 2014)
byJerome Smith
 
How to exploit heartbleed vulnerability demonstration
byPankaj Rane
 
SSL: Past, Present and Future
byTiago Mendo
 
SSL: Past, Present and Future
byLuis Grangeia
 
Certificates and Web of Trust
byYousof Alsatom
 
FreeBSD and Hardening Web Server
byMuhammad Moinur Rahman
 
SSL, X.509, HTTPS - How to configure your HTTPS server
byhannob
 
Go paranoid
byNisheed KM
 
Apache web-server-security
byAndrew Carr
 
SSL State of the Union
bySander Temme
 
When the internet bleeded : RootConf 2014
byAnant Shrivastava
 
Information Security Engineering
byMd. Hasan Basri (Angel)
 
Unsafe SSL webinar
byWolfgang Kandek
 
Ssl And Tls Theory And Practice 2nd Rolf Oppliger
byjnixigdcvv335
 
Cours4.pptx
byBellaj Badr
 

More from SensePost

PDF
objection - runtime mobile exploration
bySensePost
 
PPTX
Vulnerabilities in TN3270 based Application
bySensePost
 
PDF
Ruler and Liniaal @ Troopers 17
bySensePost
 
PDF
Introducing (DET) the Data Exfiltration Toolkit
bySensePost
 
PPTX
ZaCon 2015 - Zombie Mana Attacks
bySensePost
 
PDF
Botconf 2013 - DNS-based Botnet C2 Server Detection
bySensePost
 
PDF
Hacking Z-Wave Home Automation Systems
bySensePost
 
PPTX
Threats to machine clouds
bySensePost
 
PPTX
Inside .NET Smart Card Operating System
bySensePost
 
PDF
SNMP : Simple Network Mediated (Cisco) Pwnage
bySensePost
 
PPT
Its Ok To Get Hacked
bySensePost
 
PPT
Web Application Hacking
bySensePost
 
PDF
Putting the tea back into cyber terrorism
bySensePost
 
PPT
Major global information security trends - a summary
bySensePost
 
PPT
Attacks and Defences
bySensePost
 
PDF
Corporate Threat Modeling v2
bySensePost
 
PPTX
State of the information security nation
bySensePost
 
PPS
OK I'm here, so what's in it for me?
bySensePost
 
PPT
Security threats facing SA businessess
bySensePost
 
PPT
Security in e-commerce
bySensePost
 
objection - runtime mobile exploration
bySensePost
 
Vulnerabilities in TN3270 based Application
bySensePost
 
Ruler and Liniaal @ Troopers 17
bySensePost
 
Introducing (DET) the Data Exfiltration Toolkit
bySensePost
 
ZaCon 2015 - Zombie Mana Attacks
bySensePost
 
Botconf 2013 - DNS-based Botnet C2 Server Detection
bySensePost
 
Hacking Z-Wave Home Automation Systems
bySensePost
 
Threats to machine clouds
bySensePost
 
Inside .NET Smart Card Operating System
bySensePost
 
SNMP : Simple Network Mediated (Cisco) Pwnage
bySensePost
 
Its Ok To Get Hacked
bySensePost
 
Web Application Hacking
bySensePost
 
Putting the tea back into cyber terrorism
bySensePost
 
Major global information security trends - a summary
bySensePost
 
Attacks and Defences
bySensePost
 
Corporate Threat Modeling v2
bySensePost
 
State of the information security nation
bySensePost
 
OK I'm here, so what's in it for me?
bySensePost
 
Security threats facing SA businessess
bySensePost
 
Security in e-commerce
bySensePost
 

Recently uploaded

PDF
Upskill to Agentic Automation - Working Smarter with AI: Real-World Tools for...
byDianaGray10
 
PDF
RR B.Ed. educational trust. Ashish Tiwari
byat386834
 
PDF
How UK Employers Are Simplifying Entry-Level Hiring with Day One Jobs
byDay One Talent Solutions Ltd
 
PDF
Yelp Data Scraping for Local Services Market Insights
bycreativeclicks1733
 
PDF
Unlocking Access: Enriching Public Services with Location Intelligence.pdf
byPrecisely
 
PDF
MicroPython presentation - PyConFr Lyon 2025 - Amine Bendahmane
byAmine Bendahmane
 
PDF
How Tridens DevSecOps Ensures Compliance, Security, and Agility
byTridens
 
PPTX
OutSystems ONE 2025-recap presentation.pptx
bymostafaothman27
 
PDF
From Pixels to Insights: Getting Started with Imagery in FME
bySafe Software
 
PDF
FME Realize in the Real World - The Power of Spatial Computing in Action
bySafe Software
 
PPTX
2025 - AI terms & Meanings for Marketers
byashishav29
 
PPTX
Building Smarter Integrations with MuleSoft_ MCP Server and Cursor in Action ...
byKunal Gupta
 
PPTX
Practical tips for keeping your C# code base clean
byDennis Doomen
 
PDF
API Days Australia - API Management in the AI Era
byNilesh Gule
 
PDF
2025 AI Adoption Report: Gen AI Fast-Tracks Into the Enterprise
byRazin Mustafiz
 
PPTX
RAPTOR_Intro_Exercises_Presentation.pptx
bySwatiMalik36
 
PPTX
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
PPTX
Assignment Review and Accessibility Audit Findings.pptx
byJulia Undeutsch
 
PDF
How Generative AI Helps US Healthcare Startups Save 40.pdf
byimoliviabennett
 
PDF
Immer vorne mit dabei sein - Roaming leicht gemacht
bypanagenda
 
Upskill to Agentic Automation - Working Smarter with AI: Real-World Tools for...
byDianaGray10
 
RR B.Ed. educational trust. Ashish Tiwari
byat386834
 
How UK Employers Are Simplifying Entry-Level Hiring with Day One Jobs
byDay One Talent Solutions Ltd
 
Yelp Data Scraping for Local Services Market Insights
bycreativeclicks1733
 
Unlocking Access: Enriching Public Services with Location Intelligence.pdf
byPrecisely
 
MicroPython presentation - PyConFr Lyon 2025 - Amine Bendahmane
byAmine Bendahmane
 
How Tridens DevSecOps Ensures Compliance, Security, and Agility
byTridens
 
OutSystems ONE 2025-recap presentation.pptx
bymostafaothman27
 
From Pixels to Insights: Getting Started with Imagery in FME
bySafe Software
 
FME Realize in the Real World - The Power of Spatial Computing in Action
bySafe Software
 
2025 - AI terms & Meanings for Marketers
byashishav29
 
Building Smarter Integrations with MuleSoft_ MCP Server and Cursor in Action ...
byKunal Gupta
 
Practical tips for keeping your C# code base clean
byDennis Doomen
 
API Days Australia - API Management in the AI Era
byNilesh Gule
 
2025 AI Adoption Report: Gen AI Fast-Tracks Into the Enterprise
byRazin Mustafiz
 
RAPTOR_Intro_Exercises_Presentation.pptx
bySwatiMalik36
 
A GREEN BUSINESS TOOLKIT FOR EARLY-STAGE ENTREPRENEURS (1).pptx.pptx
bylearnskillsofficial1
 
Assignment Review and Accessibility Audit Findings.pptx
byJulia Undeutsch
 
How Generative AI Helps US Healthcare Startups Save 40.pdf
byimoliviabennett
 
Immer vorne mit dabei sein - Roaming leicht gemacht
bypanagenda
 

Heartbleed Overview

  • 2.
    whoami Dominic White CTO @SensePost We Hack | Build | Train | Scan Stuff @singe / @sensepost [email protected] info/research/job @sensepost.com
  • 3.
    What Happened • 7April 2014 – Vulnerability announced to the world with a website, OpenSSL vulnerability announcement and new code release (1.0.1g) – Found by two groups; Google Security Team (Neel Mehta & Condenomicon) • Told that private keys to SSL certificates could be exposed – uh oh • Operating systems had not packaged the new release, so many were vulnerable • Many big name companies were vulnerable; Big Tech names, Banks, Law Enforcement, Intelligence Agencies • Online testers appeared, and were quickly swamped • But ….
  • 4.
    What is it? •Vulnerability in a widely used cryptographic library – i.e. lots of Unix things use this to do encryption • Vulnerability specific to SSL Heartbeats – RFC 6520 https://tools.ietf.org/html/rfc6520 • Introduced on Dec 31 2011 by Dr Stephen Henson • Allows you to read parts of a program memory – Buffer Over Read
  • 7.
    Demo • Extracting cookies& private SSL keys from a vulnerable server
  • 8.
    Why does itwork • OpenSSL is just the library, the actual process is something like Apache, Nginx, Dovecot, Exim etc. • These processes have a HEAP, in which data used by the process is stored. – If the process is active, it changes a lot • Certificate private keys are made up of two large prime numbers; we can find these if they were used recently
  • 9.
    The slow pathto enlightenment • Initial testers looked for vanilla SSL on port 443 using TLS v1.1 – Most famous and first PoC by Jared Stafford; ssltest.py • But: – SSL runs on non-standard ports – Some servers didn’t support TLS v1.1 – SSL can be invoked on clear-text ports with STARTLS • STARTTLS is different for different protocols – Clients are vulnerable too! – Lots of debate about whether keys could be grabbed • CloudFlare challenge cleared that up – IDS signatures were quickly defeated
  • 10.
    Meanwhile …. • #heartbleedvirus •Bruce Schneier – “On the scale of 1 to 10, this is an 11.” • I’m not Vulnerable, the scanner said so! • Claims of NSA backdoor bogey men • EVERYBODY CHANGE ALL YOUR PASSWORDS! – NO WAIT, CHANGE THEM AGAIN!
  • 11.
    How Bad WasIt? • Masscan (Robert Graham) – 615 268 / 28 581 134 – After one month 318 239 • Our clients – 1.8% when it broke – Offered free “complete” scan – 24 / 224 186
  • 12.
    Tactical Defence Fix theVuln • Patch it – OpenSSL >= 1.0.1g – Old versions < 1.0.1 unaffected • Disable it – Firewall, VPN? • Reconfigure it – Disable heartbeats – Enable Perfect Forward Secrecy • IDS it? – Do not rely on this Cleanup • Change certificates – Revoke the old ones • Reset sessions – i.e. invalidate all cookies • Change passwords – Only affected user-stores
  • 13.
    Defence in Depth •One 0day shouldn’t ruin your day – But this one was tricky 1. Early alerting 2. Response procedures (IR) 3. Ability to act quickly (devsecops) 4. Avoid heterogeneity/monocultures?
  • 14.
    The State ofOpenSSL’s Future • Massive amount of legacy code • Incredibly complex to maintain – 2 people effectively doing most of it • C considered harmful today – Pointer arithmetic makes problems • FIPS certification dangerous – Certifies bad crypto & bad implementations • OpenBSD’s OpenSSL rampage -> LibreSSL • OpenSSL just got a ton of funding
  • 15.
    Eye Openers • Wethought OpenSSL was okay – Ok, lots didn’t, but nobody did anything about it – We think lots of other things are ok – ESR’s Linus’ Law: “Given enough eyeballs, all bugs are shallow” • But! – We found the bug – People actually patched it • Others – The rise of the branded bug – The trail of fakes • Media still drives reactions
  • 16.
    Thanks & References •Hackerfantastic – Tool & Presentation • Erratarob – Tool/s & blogs • XKCD – Comics! • Elpartydiablo & xnvx.com – Background

Editor's Notes

  • #2 Picture from http://www.xnvx.com/data/media/87/Bleeding_Heart_By_Elpartydiablo.jpg
  • #6 http://xkcd.com/1354/