hetty
xmppmitm
Our great sponsors
hetty | xmppmitm | |
---|---|---|
3 | 1 | |
5,906 | 41 | |
- | - | |
0.0 | 10.0 | |
about 1 year ago | about 10 years ago | |
Go | Python | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
hetty
-
Mitmproxy 8
FWIW: I'm building something in Go (https://github.com/dstotijn/hetty). But it's pretty early stage and not even near the featureset that mitmproxy or Burp Suite has. Also I wouldn't dare say it's more efficient (yet!). But Go has been great so far to build it.
As mentioned elsewhere: (dev friendly) extensibility/add-ons with Go will be an interesting challenge. Haven't looked into it yet.
-
Gopher Gold #14 - Wed Oct 07 2020
dstotijn/hetty (Go): Hetty is an HTTP toolkit for security research. It aims to become an open source alternative to commercial software like Burp Suite Pro, with powerful features tailored to the needs of the infosec and bug bounty community.
xmppmitm
-
Mitmproxy 8
I was reverse engineering my microwave a few years ago and couldn't MITM on XMPP because of the TLS so I used a jailbroken iPhone and was able to "swizzle" the Objective-C methods to log the data at a method right before encryption started. Fun.
There was another XMPP MITM I could have used, but I think I was already invested in figuring out the first idea before I learned of the simpler, existing way:
What are some alternatives?
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
ppmap - A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
lakeFS - lakeFS - Data version control for your data lake | Git for data
interactsh - An OOB interaction gathering server and client library
super-auto-pets - A tool to allow for viewing of arbitrary Super Auto Pets replays
MagiskTrustUserCerts - A Magisk/KernelSU module that automatically adds user certificates to the system root CA store
spark-operator - Kubernetes operator for managing the lifecycle of Apache Spark applications on Kubernetes.
mitmpcap - export mitmproxy traffic to PCAP file
ndbproxy - A proxy/bridge that runs between a Node.JS debug server and a Chromium devtools client and adds some additional features.
go-diagrams - Create beautiful system diagrams with Go
XMPPFrameworkLogger - An iOS jailbreak tweak to log (MITM) XMPP communication.