🦞🌯 Lobster Roll

Thread

Kazakhistan to MITM all SSL traffic (telecom.kz)
L 37 pts 4 comments by mperham Dec 2, 2015 security thread

Stories related to "Kazakhistan to MITM all SSL traffic" across the full archive.

Kazakhistan to MITM all SSL traffic (telecom.kz)
L 37 pts 4 comments by mperham Dec 2, 2015 security Security / Privacy thread
Research team finds flaws in SSL APIs, including libcurl, allowing MITM attacks (cs.utexas.edu)
L 10 pts 1 comments by crab Oct 24, 2012 pdfsecurity Security / Privacy thread
DetecTor: client side SSL/TLS MITM detection through Tor (detector.io)
L 3 pts 0 comments by jcs Sep 28, 2013 networkingsecurity Data / Databases / InfrastructureSecurity / Privacy thread
I threw together a Golang MITMing proxy to demonstrate Apple's SSL flaw (github.com)
L 5 pts 0 comments by gabriel Feb 25, 2014 gosecurity Programming (General)Programming Languages / CS TheorySecurity / PrivacyApple / macOS / iOS thread
New Lenovo laptops bundled with MITM cert/proxy to insert ads on SSL traffic (thenextweb.com)
L 43 pts 10 comments by kb Feb 19, 2015 security Security / Privacy thread
"Smart" fridge doesn't validate SSL, vulnerable to MITM (digitaljournal.com)
L 2 pts 0 comments by kb Aug 25, 2015 programmingsecurity Programming (General)Security / Privacy thread
Debugging SSL in Java using mitmproxy (blog.packagecloud.io)
L 5 pts 0 comments by capotej Nov 17, 2016 apidebuggingjavasecurity Programming (General)Security / Privacy thread
Is there a case for a unified SSL front? (daniel.haxx.se)
L 1 pts 0 comments by lynge Jul 5, 2012 security Security / Privacy thread
SSLShader - GPU-accelerated SSL Proxy (shader.kaist.edu)
L 2 pts 0 comments by inactive-user Aug 1, 2012 security Security / Privacy thread
New Burp Proxy cracks Android SSL (h-online.com)
L 1 pts 1 comments by inactive-user Aug 9, 2012 androidsecurity Security / Privacy thread
AnonymousClassLoader Java Exploitation Technique (immunityproducts.blogspot.com)
L 1 pts 0 comments by jcs Nov 23, 2012 javareversingsecurity Systems / Low-Level / OSProgramming (General)Security / Privacy thread
SSL certificate validation and DNSSEC (jpmens.net)
L 4 pts 0 comments by jcs Dec 2, 2012 browsersnetworkingsecurity Web DevelopmentData / Databases / InfrastructureSecurity / Privacy thread
Enhancing digital certificate security (fake *.google.com SSL cert issued) (googleonlinesecurity.blogspot.de)
L 6 pts 0 comments by inactive-user Jan 3, 2013 security Security / PrivacyInternet / Digital Culture thread
OpenBSD relayd SSL interception (marc.info)
L 4 pts 0 comments by lynge Jan 23, 2013 openbsdsecurity Systems / Low-Level / OSSecurity / Privacy thread
Any Firefox add-on people out there? [Plugin for validating SSL via DNS] (blather.michaelwlucas.com)
L 1 pts 0 comments by jcs Feb 26, 2013 browserssecurityunix Web DevelopmentSystems / Low-Level / OSSecurity / Privacy thread
The ICSI SSL Notary: CA Certificates (notary.icsi.berkeley.edu)
L 3 pts 0 comments by jcs Mar 8, 2013 securityvisualization Security / PrivacyDesign / UX / Visualization thread
SSL And the Future Of Authenticity (2011) (thoughtcrime.org)
L 3 pts 2 comments by inactive-user Apr 21, 2013 security Security / Privacy thread
CloudFlare, PRISM, and Securing SSL Ciphers (blog.cloudflare.com)
L 6 pts 0 comments by jcs Jun 12, 2013 privacysecurity Security / Privacy thread
SSL: Intercepted today, decrypted tomorrow (news.netcraft.com)
L 3 pts 1 comments by jturner Jun 26, 2013 browserssecurity Web DevelopmentSecurity / Privacy thread
BREACH: SSL, Gone in 30 Seconds (breachattack.com)
L 11 pts 9 comments by inactive-user Aug 1, 2013 securityweb Web DevelopmentSecurity / Privacy thread
Web Security Relies on SSL Which Relies on Email Which is Broken (blog.whitehatsec.com)
L 2 pts 0 comments by inactive-user Aug 12, 2013 security Security / Privacy thread
Lavabit SSL Certificate has been revoked (lavabit.com)
L 1 pts 3 comments by journeysquid Oct 9, 2013 privacysecurity Security / Privacy thread
Why Android SSL was downgraded from AES256-SHA to RC4-MD5 in late 2010 (op-co.de)
L 4 pts 0 comments by journeysquid Oct 14, 2013 androidsecurity Security / Privacy thread
Easier understanding of the Debian OpenSSL bug (tedunangst.com)
L 5 pts 0 comments by jcs Nov 10, 2013 clinuxsecurity Systems / Low-Level / OSSecurity / Privacy thread
Namecoin, A Replacement For SSL (blog.mediocregopher.com)
L 2 pts 0 comments by journeysquid Nov 24, 2013 networkingsecurity Data / Databases / InfrastructureSecurity / Privacy thread
How does the NSA break SSL? (blog.cryptographyengineering.com)
L 5 pts 0 comments by jcs Dec 4, 2013 security Security / Privacy thread
Weak Password Used to Access Hypervisor, Deface OpenSSL Site (threatpost.com)
L 3 pts 0 comments by jcs Jan 3, 2014 newssecurity Security / PrivacyInternet / Digital Culture thread
There was some speculation that a compromise of the hypervisor code itself was the way the OpenSSL site was defaced, but it now appears to just be a weak password.
Improving GitHub's SSL setup (github.com)
L 3 pts 0 comments by jcs Jan 7, 2014 security Programming (General)Security / Privacy thread
How's My SSL (howsmyssl.com)
L 30 pts 4 comments by kb Jan 7, 2014 networkingsecurity Data / Databases / InfrastructureSecurity / Privacy thread
Beyond SSL client cert authentication: authorization (spootnik.org)
L 4 pts 0 comments by pyr Jan 25, 2014 securityweb Web DevelopmentSecurity / Privacy thread