SSL Breach Vulnerability Checker
Check your SSL/TLS configuration for BREACH vulnerability. Ensure HTTP compression is disabled for sensitive data transfers.
Short Info
Level
Medium
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
20 seconds
Time Interval
1 month 4 days
Scan only one
Domain, IPv4, Subdomain
Toolbox
-
What is SSL BREACH Vulnerability?
SSL BREACH (Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext) is a vulnerability that targets HTTPS connections using HTTP compression. By observing changes in the size of compressed HTTPS responses, an attacker can infer sensitive information such as CSRF tokens or authentication credentials.
The attack works by sending carefully crafted requests to the server and analyzing the responses to detect patterns. Since HTTP compression compresses similar data, the attacker can guess portions of sensitive data, such as session tokens, by matching patterns in the encrypted traffic. BREACH primarily affects systems that combine SSL/TLS with HTTP compression.
Mitigations include disabling HTTP compression for sensitive data, implementing random padding to make compressed responses unpredictable, and ensuring secure token management to limit exposure.
