sslcaudit v1.0 Released

Posted in Tools by MaxiSoler on 21 May 2012 Tags: SSL, SSL/TLS security, sslcaudit

The goal of sslcaudit project is to develop a utility to automate testing SSL/TLS clients for resistance against MITM attacks. It is useful for testing thick clients, mobile applications, appliances, pretty much anything communicating over SSL/TLS over TCP.

The goal of sslcaudit project is to develop a utility to automate testing SSL/TLS clients for resistance against MITM attacks, focusing on flaws exploitable in practice. On the high level sslcaudit tests:

what server certificates the client trusts enough to establish SSL/TLS connection,
what flavors of SSL protocol the client supports (coming in sslcaudit v1.1).

Documentation:

SSLCAudit User Guide v1.0

More Information: here

Download sslcaudit v1.0

Save Post as PDF

Leave a Reply Cancel reply

[Paper] WASC: Static Analysis Technologies Evaluation Criteria v1.0 (SATEC)

The goal of the SATEC (Static Analysis Technologies Evaluation Criteria) project is to create a ...
[Report] For Their Eyes Only: The Commercialization of Digital Spying (The Citizen Lab)

The Citizen Lab is an interdisciplinary laboratory based at the Munk School of Global Affairs,at the University ...
The Art of Exploiting Injection Flaws at Black Hat Vegas 2013

(Article by Sumit 'Sid' Siddharth) Read other Sid's posts at www.notsosecure.com) So, you found a SQL ...
Book Review: Violent Python A Cookbook for Hackers, Forensic Analysts, Penetration Testers and Security Engineers

'Give a man a fish and you feed him for a day. Teach a man ...
(IN)SECURE Magazine Issue #37 Released

(IN)SECURE Magazine is a freely available digital security magazine discussing some of the hottest information security ...

R.I.P Brad “the Nurse” Smith – A Blackhat Icon passed away

Dear all, This is a very sad news for the Hackers & Blackhat Community. After a ...
A Day in the Blackhat Arsenal without Brad ‘TheNurse’ Smith

This year, The Blackhat Arsenal had a bitter aftertaste without the participation of a renowned ...
Blackhat USA 2012: Interview with Stach & Liu Team about Google Diggity Project

Francis Brown Stach & Liu, LLC Francis Brown, CISA, CISSP, MCSE, is a Managing Partner at Stach ...
Blackhat USA 2012: Interview with FishNet Team about SIRA

Justin Engler FishNet Security Justin Engler is a Senior Security Consultant for FishNet Security's Application Security practice. ...
Blackhat USA 2012: Interview with Raphael Mudge about Armitage (Also Introducing CobaltStrike)

Raphael Mudge Strategic Cyber LLC Raphael Mudge is the founder of Strategic Cyber LLC, a Washington, DC ...

sslcaudit v1.0 Released

Related Posts

Leave a Reply Cancel reply