CVE-2016-5696

This repository contains a functional Python-based proof-of-concept exploit for CVE-2016-5696, a TCP side-channel attack that allows an attacker to infer the source port of a client connecting to a server. The exploit uses Scapy to craft and send TCP packets, synchronizing with the server's clock to infer the ephemeral port range.

This repository contains functional proof-of-concept code for CVE-2016-5696, an off-path TCP exploit that allows connection resets or session injection by leveraging challenge ACK attacks. The code demonstrates the attack against both clients and servers, as described in the referenced academic paper.

This repository contains a functional proof-of-concept exploit for CVE-2016-5696, demonstrating off-path TCP injection techniques. The code includes packet crafting and sequence number inference, though it is not a complete implementation of the full attack chain.

This repository contains a functional daemon (chackd) designed to mitigate CVE-2016-5696 by randomizing the kernel parameter tcp_challenge_ack_limit. The code includes a Makefile, daemon initialization, and scripts to manage the daemon.

This repository contains a Go-based scanner for CVE-2016-5696, a TCP off-path vulnerability in Linux kernel's global rate-limiting mechanism. It sends crafted TCP packets to detect vulnerable hosts by analyzing challenge ACK responses.