---
_id: '57816'
abstract:
- lang: eng
  text: "TLS-Attacker is an open-source framework for analyzing Transport\r\nLayer
    Security (TLS) implementations. The framework allows users\r\nto specify custom
    protocol flows and provides modification hooks to\r\nmanipulate message contents.
    Since its initial publication in 2016 by\r\nJuraj Somorovsky, TLS-Attacker has
    been used in numerous studies\r\npublished at well-established conferences and
    helped to identify\r\nvulnerabilities in well-known open-source TLS libraries.
    To enable\r\nautomated analyses, TLS-Attacker has grown into a suite of projects,\r\neach
    designed as a building block that can be applied to facilitate\r\nvarious analysis
    methodologies. The framework still undergoes\r\ncontinuous improvements with feature
    extensions, such as DTLS\r\n1.3 or the addition of new dialects such as QUIC,
    to continue its\r\neffectiveness and relevancy as a security analysis framework."
author:
- first_name: Fabian
  full_name: Bäumer, Fabian
  last_name: Bäumer
- first_name: Marcus
  full_name: Brinkmann, Marcus
  last_name: Brinkmann
- first_name: Nurullah
  full_name: Erinola, Nurullah
  last_name: Erinola
- first_name: Sven Niclas
  full_name: Hebrok, Sven Niclas
  id: '55616'
  last_name: Hebrok
  orcid: 0009-0006-1172-1665
- first_name: Nico
  full_name: Heitmann, Nico
  id: '74619'
  last_name: Heitmann
  orcid: 0009-0003-7687-7044
- first_name: Felix
  full_name: Lange, Felix
  id: '67893'
  last_name: Lange
- first_name: Marcel
  full_name: Maehren, Marcel
  last_name: Maehren
- first_name: Robert
  full_name: Merget, Robert
  last_name: Merget
- first_name: Niklas
  full_name: Niere, Niklas
  id: '63563'
  last_name: Niere
- first_name: Maximilian Manfred
  full_name: Radoy, Maximilian Manfred
  id: '68826'
  last_name: Radoy
  orcid: 0009-0005-3059-6823
- first_name: Conrad
  full_name: Schmidt, Conrad
  last_name: Schmidt
- first_name: Jörg
  full_name: Schwenk, Jörg
  last_name: Schwenk
- first_name: Juraj
  full_name: Somorovsky, Juraj
  id: '83504'
  last_name: Somorovsky
  orcid: 0000-0002-3593-7720
citation:
  ama: 'Bäumer F, Brinkmann M, Erinola N, et al. TLS-Attacker: A Dynamic Framework
    for Analyzing TLS Implementations. In: <i>Proceedings of Cybersecurity Artifacts
    Competition and Impact Award (ACSAC ’24)</i>. ; 2024.'
  apa: 'Bäumer, F., Brinkmann, M., Erinola, N., Hebrok, S. N., Heitmann, N., Lange,
    F., Maehren, M., Merget, R., Niere, N., Radoy, M. M., Schmidt, C., Schwenk, J.,
    &#38; Somorovsky, J. (2024). TLS-Attacker: A Dynamic Framework for Analyzing TLS
    Implementations. <i>Proceedings of Cybersecurity Artifacts Competition and Impact
    Award (ACSAC ’24)</i>. Annual Computer Security Applications Conference, Hawaii.'
  bibtex: '@inproceedings{Bäumer_Brinkmann_Erinola_Hebrok_Heitmann_Lange_Maehren_Merget_Niere_Radoy_et
    al._2024, title={TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations},
    booktitle={Proceedings of Cybersecurity Artifacts Competition and Impact Award
    (ACSAC ’24)}, author={Bäumer, Fabian and Brinkmann, Marcus and Erinola, Nurullah
    and Hebrok, Sven Niclas and Heitmann, Nico and Lange, Felix and Maehren, Marcel
    and Merget, Robert and Niere, Niklas and Radoy, Maximilian Manfred and et al.},
    year={2024} }'
  chicago: 'Bäumer, Fabian, Marcus Brinkmann, Nurullah Erinola, Sven Niclas Hebrok,
    Nico Heitmann, Felix Lange, Marcel Maehren, et al. “TLS-Attacker: A Dynamic Framework
    for Analyzing TLS Implementations.” In <i>Proceedings of Cybersecurity Artifacts
    Competition and Impact Award (ACSAC ’24)</i>, 2024.'
  ieee: 'F. Bäumer <i>et al.</i>, “TLS-Attacker: A Dynamic Framework for Analyzing
    TLS Implementations,” presented at the Annual Computer Security Applications Conference,
    Hawaii, 2024.'
  mla: 'Bäumer, Fabian, et al. “TLS-Attacker: A Dynamic Framework for Analyzing TLS
    Implementations.” <i>Proceedings of Cybersecurity Artifacts Competition and Impact
    Award (ACSAC ’24)</i>, 2024.'
  short: 'F. Bäumer, M. Brinkmann, N. Erinola, S.N. Hebrok, N. Heitmann, F. Lange,
    M. Maehren, R. Merget, N. Niere, M.M. Radoy, C. Schmidt, J. Schwenk, J. Somorovsky,
    in: Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC
    ’24), 2024.'
conference:
  end_date: 2024-12-13
  location: Hawaii
  name: Annual Computer Security Applications Conference
  start_date: 2024-12-09
date_created: 2024-12-17T11:25:14Z
date_updated: 2025-02-27T08:02:30Z
department:
- _id: '632'
keyword:
- SSL
- TLS
- DTLS
- Protocol State Fuzzing
- Planning Based
language:
- iso: eng
publication: Proceedings of Cybersecurity Artifacts Competition and Impact Award (ACSAC
  ’24)
quality_controlled: '1'
status: public
title: 'TLS-Attacker: A Dynamic Framework for Analyzing TLS Implementations'
type: conference
user_id: '67893'
year: '2024'
...