dependency-check-gradle
ecapture
| dependency-check-gradle | ecapture | |
|---|---|---|
| 1 | 9 | |
| 348 | 8,173 | |
| 0.9% | 1.4% | |
| 7.0 | 9.2 | |
| about 1 month ago | 9 days ago | |
| Groovy | C | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
dependency-check-gradle
-
How do you verify third party packages/modules?
For small projects I use whatever CVE scanner is free, such as npm audit, or OWASP dependency check. There are several projects that wrap OWASP's tool or use its database. In corporate environments, I've had to work with Blackduck and Checkmarx.
ecapture
- Capture SSL/TLS text content without CA cert using eBPF. supports Linux/Android x86_64/Aarch64.
-
eCapture: capture HTTPS traffic without CA certificates on Android/Linux using Golang.
The answer is YES. eCapture for Android can help you capture HTTPS packets on Android without the trivial settings. and also support Linux Kernel.
-
Go based eBPF projects
eCapture : Capture SSL/TLS text content without CA certificate Using eBPF
-
Kubeshark: The API Traffic Viewer for Kubernetes
One option is to use ebpf uprobes to dump the key material or plaintext (https://github.com/ehids/ecapture ). Should be easy for c-like TLS libraries probably less useful for JIT languages.
-
Can eBPF be used to measure and trace http 502 504
Other standalone project it https://github.com/ehids/ecapture which might be helpful
- ecapture: capture SSL/TLS text content without CA cert using eBPF.
- Ecapture: Capture and Decode TLS with eBPF
- Capture SSL/TLS text content without CA cert by eBPF
What are some alternatives?
ssldump - ssldump - (de-facto repository gathering patches around the cyberspace)
sslsplit - Transparent SSL/TLS interception
merecat - Small and made-easy HTTP/HTTPS server based on Jef Poskanzer's thttpd
wolfssl - The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!
golang-tls - Simple Golang HTTPS/TLS Examples
ssl-handshake - A command-line tool for testing SSL/TLS handshake latency, written in Go.
pixie - Instant Kubernetes-Native Application Observability
bcc - BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more
certmagic - Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal
libs - libsinsp, libscap, the kernel module driver, and the eBPF driver sources
kubeshark - The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
ebpf-tproxy-splicer - This is a project to develop an ebpf program that uses ebpf tc to redirect ingress ipv4 udp/tcp flows toward specific dynamically created sockets and acts as a stateful firewall.