This repository has been archived on 2024-01-23. You can view files and clone it, but cannot push or open issues or pull requests.
wireguard-tools/contrib/extract-handshakes
Jason A. Donenfeld b8e89f3a09 global: update copyright
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
2019-01-07 19:26:10 -05:00
..
.gitignore contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
Makefile makefile: use immediate expansion and use correct template patterns 2018-12-18 14:41:48 +01:00
README contrib: add extract-handshakes kprobe example 2018-03-04 18:50:25 +01:00
extract-handshakes.sh global: update copyright 2019-01-07 19:26:10 -05:00
offset-finder.c global: update copyright 2019-01-07 19:26:10 -05:00

README

Handshake Extractor
===================

This will extract private keys from outgoing handshake sessions, prior
to them being sent, via kprobes. It exports the bare minimum to be
able to then decrypt all packets in the handshake and in the subsequent
transport data session.

Build:

    $ make

Run (as root):

    # ./extract-handshakes.sh
    New handshake session:
      LOCAL_STATIC_PRIVATE_KEY = QChaGDXeH3eQsbFAhueUNWFdq9KfpF3yl+eITjZbXEk=
      REMOTE_STATIC_PUBLIC_KEY = HzgTY6aWXtuSyW/PUquZtg8LB/DyMwEXGkPiEmdSsUU=
      LOCAL_EPHEMERAL_PRIVATE_KEY = UNGdRHuKDeqbFvmiV5FD4wP7a8PqI6v3Xnnz6Jc6NXQ=
      PRESHARED_KEY = AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=