The Data Interception Environment (DIE) is a tool that you can use to analyse how your data is being used by app developers and third parties. It allows you to see how apps are sending your data from your device back to the company or to third parties.
Idem PiRogue
L'outil https://github.com/privacyint/appdata-environment-desktop/tree/update-3
Dépôt https://github.com/PiRanhaLysis/PiRogue
Démo https://www.youtube.com/watch?v=o0OSaSh0HJw
doc / prez "Setting up a man-in-the-middle attack" https://domenpk.github.io/mitm_workshop/
Le PiRogue est un petit équipement ayant pour objectif de faciliter l'interception de trafic réseau et de l'analyser. Le PiRogue est basé sur un Raspberry Pi 3 et la distribution Kali GNU/Linux.
Leading source of Security Tools, Hacking Tools, CyberSecurity and Network Security ☣
plein de papiers 'achment intéressants, sécu, crypto, vulns
mitm AV voir The Security Impact of HTTPS Interception
The Security Impact of HTTPS Interception
mitmAP - A python program, to create a fake AP, and sniff data.
In this blog post, I described how I used that certificate in order to pwn victims using a rogue WiFi hotspot.
voir en annexe liste de chipsets wifi plus actuels
SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections.
Debian: apt-get install sslsplit
tutorial https://blog.heckel.xyz/2013/08/04/use-sslsplit-to-transparently-sniff-tls-ssl-connections/
- DroidSheep [Root] is an Android app for Security analysis in wireless networks and capturing facebook, twitter, linkedin and other accounts.
- DroidSheep Guard is another Android app for monitoring Androids ARP-table. It tries to detect ARP-Spoofing on the network, such as an attack by DroidSheep, FaceNiff and other software.
'tention: apk non dispo, ni non plus semble-t-il le source. L'apk se trouve, gaffe et vérifier les checksum sur le site