In 1998, Daniel Bleichenbacher discovered that the error messages given by SSL servers for errors in the PKCS #1 v1.5 padding allowed an adaptive-chosen ciphertext attack; this attack fully breaks the confidentiality of TLS when used with RSA encryption.

Return of Bleichenbacher's Oracle Threat - ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.

Return of Bleichenbacher's Oracle Threat - ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.

Return of Bleichenbacher's Oracle Threat - ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.

In my case, as my objective was understanding everything behind ROBOT, I prepared the code to perform the attack all by myself. The only library I used was gmplib, in order to perform big number arithmetics without having to implement it myself.

It's hardcoded with a particular blinded value because I parallelised the code in two parts (blinding then the other queries) as I was executing the attack and saving the blinded value allowed me to skip a lot of queries.