Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0017
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Key exchange: 0x0017 (Secp256r1)
(Handshake level)
Handshake secrets:
Client: 0x35DB559C340A8251011EC0E7780BA63B952F78954C628ED9926D5EB17EA38A39055628AC467B85B463ED0D27D539C047
Server: 0x34A27279A92A997DB1720C18FE3F7949F59D02890C96EC11C1561E99EF9AE1E52735D3294A572E5D1BB3A2DD5AEF7DC2
Handshake keys:
Client write: 0x796DF3C68BECBD0547F8D5D42E3CE82B6164F07B07EA207424DBAF530CAF657A
Server write: 0x529A28704050229A511E268FEA7B309D31815FBAB7F2093540B6F68E06B32265
Handshake IVs:
Client write (IV): 0x5B46E56ECFAC9233A28F0928
Server write (IV): 0x867C6B30B847D67AFB632B10
(Traffic level)
Traffic secrets:
Client: 0x9BD673B57551C6971262D32DBE00B14ADD3AD0BA499748620780FEF179ABBF0D75031C8EA69B6B8F19B55954CD6B84A0
Server: 0xF5E768DB1EF92A02CBC830BB35ED6E87D075489FAB743C7100A634D404FD9A3E150271DC56765BBE7661039FD3CB7AEE
Traffic keys:
Client write: 0x7ABD1F4D533E1814423F0D2073ACD360EBC0ACACB9484022C51162C422941AFA
Server write: 0xAB91AAEBE4EEEF94C5CE08D5144A9E90257ECBDB3CBD873D86508E118A8C7386
Traffic base IVs:
Client write (base IV): 0xA9B0C21B5681FE84F312C1F4
Server write (base IV): 0xDE513F43506933806116FADE
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 60:A6:42:29:FF:EF:0B:93:9B:C6:67:3E:CC:87:E3:DA:14:A1:81:96:23:D9:1E:DB:A9:10:46:A0:2A:3D:E2:A0
Client SessionID: 39:FD:56:B6:E5:DA:0B:C7:55:90:FE:75:E7:B0:AA:AD:D2:32:95:41:F2:98:6A:43:60:CB:3A:0F:B1:A0:60:CD
Extensions:
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 35 (0x0023); /non-TLS-1.3/
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 23 (0x0017); /non-TLS-1.3/
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x5B53A38F647B1D13E215C0E12673FAEE5C3051F9D09AB787E668482A3F18C743
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 39:FD:56:B6:E5:DA:0B:C7:55:90:FE:75:E7:B0:AA:AD:D2:32:95:41:F2:98:6A:43:60:CB:3A:0F:B1:A0:60:CD
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 60:A6:42:29:FF:EF:0B:93:9B:C6:67:3E:CC:87:E3:DA:14:A1:81:96:23:D9:1E:DB:A9:10:46:A0:2A:3D:E2:A0
Client SessionID: 39:FD:56:B6:E5:DA:0B:C7:55:90:FE:75:E7:B0:AA:AD:D2:32:95:41:F2:98:6A:43:60:CB:3A:0F:B1:A0:60:CD
Extensions:
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 35 (0x0023); /non-TLS-1.3/
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 23 (0x0017); /non-TLS-1.3/
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0xFC1A82AB902EC0BA9300FB893444A564427B22A681B3BADEE632D5A07DDA1C3E
y = 0x612A20669AAC9FDD0147D88D403AB610828029D7C9D8CD9BD21B2FE7ACFA75C2
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 39:FD:56:B6:E5:DA:0B:C7:55:90:FE:75:E7:B0:AA:AD:D2:32:95:41:F2:98:6A:43:60:CB:3A:0F:B1:A0:60:CD
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3402
[...] /skipped 3402 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:28:46:4E:F3:3C:9F:FB:E0:D5:7B:19:87:B1:36:7A:9B:75:1A:89:CC:0E:35:87:FF
C0:F2:93:0B:BE:30:01:51:AD:D8:8D:5B:36:32:FC:80:29:DC:30:40:A3:89:45:D6:02:31:00:88:B6:A1:A0:1C
19:B1:4F:48:66:2E:0D:4D:D0:90:00:2A:F5:48:57:C2:80:A1:A7:B4:D7:29:CD:3C:95:61:54:A8:10:CD:06:7B
1E:AD:FE:7F:38:1C:03:65:18:0E:12
Type: 20 (0x14) - "finished"
Length (octets, dec.): 48
BC:F5:6E:64:4C:78:F4:1F:3B:AC:05:18:35:F4:F2:D4:E8:5E:BF:34:59:78:D2:A1:5A:C4:1E:95:40:07:D0:AF
8E:9F:05:E0:65:CA:51:5D:FD:53:E0:4F:8C:69:80:38
CLIENT_FINISHED (received)
Finished value: 0x4B0152C061C342951B925DE1FCEEB83D5520ED60ED1A726E8117DDC50D2F26D6016AF48CF23ECF543189E93DC5C7DD81
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
TCP: server: 194.87.103.72:443; client: 216.73.216.246:19636; timestamp: 1783896180
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 285ms; ServerHello sent: 143ms (including HelloRetryRequest time); TLS connection established: 284ms.