fragattacks/research
Mathy Vanhoef 93441c3e45 fragattacks: avoid python dependency with vulnerability
The py dependency in requirements.txt causes a security warning on
GitHub and attracts automated bug hunters (without the hunters verifying
the relevancy of the finding). Avoid this.

Flaws in py: CVE-2020-29651
Vulnerable versions: < 1.10.0
Patched version: 1.10.0
Description: A denial of service via regular expression in the py.path.svnwc
component of py (aka python-py) through 1.9.0 could be used by attackers to
cause a compute-time denial of service attack by supplying malicious input
to the blame functionality.

This fixes #40
2021-09-06 13:59:31 +02:00
..
ath9k-firmware fragattacks: updated ath9k_htc firmware images 2021-05-07 13:31:11 +04:00
libwifi libwifi: add remove_dot11qos function 2021-05-16 22:09:28 +04:00
build.sh fragattacks: add copyright notices 2020-10-24 21:49:17 +04:00
client.conf fragattacks: minor tweak to client.conf 2021-05-07 13:33:01 +04:00
droptraffic.sh fragattacks: add copyright notices 2020-10-24 21:49:17 +04:00
fragattack.py fragattacks: README: clarify ping-frag-sep tests 2021-06-21 23:57:45 +04:00
fraginternals.py fragattacks: option to never send QoS data frames 2021-05-16 22:09:28 +04:00
hostapd.conf fragattack: configuration files and scripts 2020-02-27 07:06:53 -05:00
hwsim.sh fragattacks: add copyright notices 2020-10-24 21:49:17 +04:00
pysetup.sh fragattack: improved scapy fix and driver/hostap version check 2021-01-21 01:49:12 +04:00
requirements.txt fragattacks: avoid python dependency with vulnerability 2021-09-06 13:59:31 +02:00
scan.sh fragattacks: add copyright notices 2020-10-24 21:49:17 +04:00
test-injection.py fragattacks: track latest libwifi 2021-03-15 22:13:11 +04:00
tests_attacks.py fragattack: use set_amsdu and is_amsdu functions 2021-01-16 14:39:21 +04:00
tests_common.py fragattack: use set_amsdu and is_amsdu functions 2021-01-16 14:39:21 +04:00
tests_old.py fragattack: bugfix in eapfrag test 2020-08-05 12:11:32 +04:00
tests_qca.py fragattack: add copyright banners 2020-06-28 12:35:45 +04:00
wpaspy.py fragattack: script to inject encrypted fragmented frames 2020-02-27 07:07:19 -05:00