Red October

Overview

A software-based solution that provides secure remote access and authentication.

Features

• Two-man rule: ensures only authorized individuals have access to the system.
• Base64 encoded JSON responses: for added security and encryption.
• SSH signing oracle: allows for secure authentication without exposing private keys.
• Consigning of encrypted keys: enables secure key management and control.
• SSH agent forwarding: permits seamless authentication across networks.

Usage

• Name and Password are required for authentication.
• Base64 encoded JSON responses contain the status and response data.
• The index.html file provides a basic web interface for managing the service.
• Data sent to the server must be base64 encoded using JavaScript's btoa and atob functions.

SSH Signing Oracle

• Generate an ssh key without passphrase: ssh-keygen -f id_ed25519 -N "".
• Consign the key to the RO Server: ro -server localhost:443 -ca server.crt -minUsers 2 -owners alice, bob -usages ssh-sign-with -in id_ed25519 -out id_ed25519.encrypted encrypt.
• Start the RO SSH Agent: ro -server localhost:443 -ca server.crt ssh-agent.
• Connect to SSH via RO SSH Agent: export SSH_AUTH_SOCK=/tmp/ro_ssh_267631424/roagent.sock and use the ro-ssh-agent for authentication.

SSH Agent Forwarding

• Forward the ro-ssh-agent using the -A flag with ssh commands.

> Visit redoctober Website <