evilgrade
mitmproxy
evilgrade | mitmproxy | |
---|---|---|
4 | 152 | |
1,250 | 34,347 | |
0.0% | 0.8% | |
0.0 | 9.4 | |
over 2 years ago | 7 days ago | |
Perl | Python | |
- | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
evilgrade
-
Intel Quietly Resumes Russia Support, Unblocks Software Downloads
Insecure or compelled malicious auto-updates are an unappreciated threat.
- Some information and advice about DDoS, from someone who was there during #opPayback
- List of resources
-
Awesome Penetration Testing
evilgrade - Modular framework to take advantage of poor upgrade implementations by injecting fake updates.
mitmproxy
- Ask HN: Fiddler Alternatives
- Bruno
-
AirBnb Wifi Safety Precaution needed?
This statement gives a false sense of security. You can use a transparent proxy, like mitmproxy, to view HTTPS traffic - https://mitmproxy.org/. https://reedmideke.github.io/networking/2021/01/04/mitmproxy-openwrt.html
-
WORKING tutorial on how to enable iOS voice chat RIGHT NOW
You'll need to install mitmproxy and set it up on your computer and iOS. I won't go into too much detail here on how to do this, but there are plenty of guides available. This is a pretty good one: https://nadav.ca/2021/02/26/inspecting-an-iphone-s-https-traffic/
-
mitmproxy VS petep - a user suggested alternative
2 projects | 3 Oct 2023
-
Upside-Down-Ternet (2006)
TIL this goes back to 2006, how cool! We nowadays have a much simpler version as a mitmproxy example: https://github.com/mitmproxy/mitmproxy/blob/main/examples/ad.... Although it obviously does not work as well anymore with everything being HTTPS nowadays (unless you trust the cert of course). :)
-
Ask Dang: What Has Happened with HN's HTTPS Recently?
Perhaps you could have your device use a proxy that can do the HTTPS unwrap for you? https://mitmproxy.org/ maybe?
-
How to implement SSL/TLS pinning in Node.js
A great way to test the effectiveness of a pinning implementation is by simulating an MITM attack. Tools like Mitmproxy or Wireshack allow us to create a test environment to monitor, intercept, and proxy network requests for a test host.
- Evading JavaScript Anti-Debugging Techniques
- Compatibility with Newer Versions of Cryptography
What are some alternatives?
GHunt - 🕵️♂️ Offensive Google framework.
Wireshark - Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. ⚠️ GitHub won't let us disable pull requests. ⚠️ THEY WILL BE IGNORED HERE ⚠️ Upload them at GitLab instead.
faraday - Open Source Vulnerability Management Platform
Shadowrocket-ADBlock-Rules - 提供多款 Shadowrocket 规则,带广告过滤功能。用于 iOS 未越狱设备选择性地自动翻墙。
LinkedInt - LinkedIn Recon Tool
bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
sslstrip - A tool for exploiting Moxie Marlinspike's SSL "stripping" attack.
gophish - Open-Source Phishing Toolkit
IOXY - MQTT intercepting proxy
ScareCrow - ScareCrow - Payload creation framework designed around EDR bypass.
ZAP - The ZAP core project