Stars
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
Analyze HTTP requests to minimize risks of HTTP Desync attacks (precursor for HTTP request smuggling/splitting).
TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can be used to manually test TLS clients and servers or as as a software library for more advanced tools.
mTCP: A Highly Scalable User-level TCP Stack for Multicore Systems
Community guide to using YubiKey for GnuPG and SSH - protect secrets with hardware crypto.
Papers from the computer science community to read and discuss.
JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
Intel QuickAssist Technology( QAT) OpenSSL Engine (an OpenSSL Plug-In Engine) which provides cryptographic acceleration for both hardware and optimized software using Intel QuickAssist Technology e…
Fast and powerful SSL/TLS scanning library.
A pure Unix shell script ACME client for SSL / TLS certificate automation
A modern, portable, easy to use crypto library.
An open source, portable, easy to use, readable and flexible TLS library, and reference implementation of the PSA Cryptography API. Releases are on a varying cadence, typically around 3 - 6 months …
Self describing hashes - for future proofing
Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
Project Wycheproof tests crypto libraries against known attacks.
Empowering everyone to build reliable and efficient software.
Web application acceleration, advanced DDoS protection and web security
BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more
Reddit-style quote sharing website