Extracting TLS keys from an unwilling application

This page summarizes the projects mentioned and recommended in the original post on news.ycombinator.com
Troubleshooting Python Security man-in-the-middle TLS

InfluxDB - Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

  • Deviare2

    Deviare API Hook

    • Another useful tool I have used in the past in windows is Nektra Deviare for function hooking. This is similar to the old Microsoft Detours framework, in that one can dynamically patch code in the running binary. I have used this to grab raw keys.

    https://www.nektra.com/products/deviare-api-hook-windows/

  • mitmproxy

    An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

    • Not sure about the non-security expert bit but I've done stuff[0] similar to this for iOS using Frida[1] which supports macOS too. For apps that use unpinned certificates and the builtin networking libraries(NSURLSession et.al.) you can directly use mimtproxy[2] or Charles[3]

    0: https://hugotunius.se/2020/08/07/stealing-tls-sessions-keys-...

    1: https://frida.re/

    2: https://mitmproxy.org/

    3: https://www.charlesproxy.com/

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Ask HN: Fiddler Alternatives

    1 project | news.ycombinator.com | 14 Mar 2024

  • AirBnb Wifi Safety Precaution needed?

    1 project | /r/AskNetsec | 6 Dec 2023

  • WORKING tutorial on how to enable iOS voice chat RIGHT NOW

    1 project | /r/ChatGPT | 3 Oct 2023

  • Upside-Down-Ternet (2006)

    1 project | news.ycombinator.com | 2 Oct 2023

  • Ask Dang: What Has Happened with HN's HTTPS Recently?

    1 project | news.ycombinator.com | 13 Sep 2023