MungeTLS - inspect/modify TLS 1.0, 1.1, and 1.2 traffic

  •        88

A minimal TLS server implementation with a plugin system for manipulating and monitoring every stage of the TLS handshake and application data.

http://mungetls.codeplex.com/

Tags
Implementation
License
Platform

   




Related Projects

Nogotofail - Network Security Testing Tool


Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, and more.

random-ssl-server


spawns a server listening for HTTPS (SSL) requests supplying random auto-generated certificates for each request. [HTTPS,SSL,Fuzzing,Testing,Resiliency]

tls-canary - TLS regression scanner for Firefox


TLS Canary is a TLS/SSL testing framework for the Mozilla Firefox web browser. It is used by developers to run regression and performance tests against a large number of HTTPS-enabled hosts on the Internet.The script linux_bootstrap.sh provides bootstrapping for a headless Ubuntu-based EC2 instance which requires installation of a few standard GUI libraries for running Firefox. The script may or may not work for your other favourite Debian-based distribution.

adfullssl - AdFullSsl is a tool that can automatically detect SSL non-compliant ads and fix them


AdFullSsl is a tool that can automatically detect SSL non-compliant ads and fix them.Web browsers connect HTTPS pages using encrypted connection with SSL/TLS, but no encryption is made on regular HTTP connections. If the HTTPS page includes contents retrieved through HTTP (insecure) connections, the user is subject to a risk of main-in-the-middle attack, in which an attacker can steal user's sensitive information on unencrypted connection.

PolarSSL library - Crypto and SSL made easy


Download PolarSSL PolarSSL is an SSL library written in ANSI C. PolarSSL makes it easy for developers to include cryptographic and SSL/TLS capabilities in their (embedded) products with as little hassle as possible. It is designed to be readable, documented, tested, loosely coupled and portable. It supports Symmetric encryption algorithms, hash algorithms, RSA with PKCS and X.509 certificate, SSL and TLS.



ghostunnel - A simple SSL/TLS proxy with mutual authentication for securing non-TLS services


Ghostunnel is a simple TLS proxy with mutual authentication support for securing non-TLS backend applications.Ghostunnel supports two modes, client mode and server mode. Ghostunnel in server mode runs in front of a backend server and accepts TLS-secured connections, which are then proxied to the (insecure) backend. A backend can be a TCP domain/port or a UNIX domain socket. Ghostunnel in client mode accepts (insecure) connections through a TCP or UNIX domain socket and proxies them to a TLS-secured service. In other words, ghostunnel is a replacement for stunnel.

s2n - an implementation of the TLS/SSL protocols from Amazon


s2n is a C99 implementation of the TLS/SSL protocols that is designed to be simple, small, fast, and with security as a priority. s2n implements SSLv3, TLS1.0, TLS1.1, and TLS1.2. For encryption, s2n supports 128-bit and 256-bit AES, in the CBC and GCM modes, 3DES, and RC4. For forward secrecy, s2n supports both DHE and ECDHE.

distcache, Distributed session caching


Distributed session caching tools and APIs, primarily for SSL/TLS servers though perhaps useful for other (non-SSL/TLS) circumstances. Also includes a self-contained network abstraction library (libnal), and the sslswamp SSL/TLS benchmark/test utility.

KeyBox - Web-based SSH console that centrally manages administrative access to systems


KeyBox is an open-source web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user's public SSH keys. Key management and administration is based on profiles assigned to defined users. KeyBox layers TLS/SSL on top of SSH and acts as a bastion host for administration. Protocols are stacked (TLS/SSL + SSH) so infrastructure cannot be exposed through tunneling / port forwarding.

SSL-TLS-clientserver - SSL/TLS client server examples using libssl and polarssl


SSL/TLS client server examples using libssl and polarssl

OpenSSL - Toolkit for SSL and TLS


The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library.

cipherscan - A very simple way to find out which SSL ciphersuites are supported by a target.


Cipherscan tests the ordering of the SSL/TLS ciphers on a given target, for all major versions of SSL and TLS. It also extracts some certificates informations, TLS options, OCSP stapling and more. Cipherscan is a wrapper above the openssl s_client command line.Cipherscan is meant to run on all flavors of unix. It ships with its own built of OpenSSL for Linux/64 and Darwin/64. On other platform, it will use the openssl version provided by the operating system (which may have limited ciphers support), or your own version provided in the -o command line flag.

apache-mod_gnutls - SSL v3, TLS 1.0 and TLS 1.1 encryption for Apache HTTPD


SSL v3, TLS 1.0 and TLS 1.1 encryption for Apache HTTPD

tls-gen - Generates self-signed TLS/SSL certificates useful for development


Generates self-signed TLS/SSL certificates useful for development

tls-client-hello-stats - Tools to analyze SSL/TLS Client hellos from a packet capture.


Tools to analyze SSL/TLS Client hellos from a packet capture.

hs-tls - TLS/SSL implementation in haskell


TLS/SSL implementation in haskell

tls-gen - Generates self-signed TLS/SSL certificates useful for development


Generates self-signed TLS/SSL certificates useful for development

opencrypto-tls - TLS/SSL Library (written by C#)


TLS/SSL Library (written by C#)

lemur - Repository for the Lemur Certificate Manager


Lemur manages TLS certificate creation. While not able to issue certificates itself, Lemur acts as a broker between CAs and environments providing a central portal for developers to issue TLS certificates with 'sane' defaults.It works on CPython 3.5. We deploy on Ubuntu and develop on OS X.