Skip to content

Priya-android/nogotofail

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

115 Commits

docs

docs

 
 

nogotofail

nogotofail

 
 

.gitignore

.gitignore

 
 

AUTHORS

AUTHORS

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

CONTRIBUTORS

CONTRIBUTORS

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

dhparam

dhparam

 
 

example.conf

example.conf

 
 

replace.png

replace.png

 
 

setup.py

setup.py

 
 

superfish.pem

superfish.pem

 
 

Repository files navigation

#nogotofail

Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, and more.

##Design Nogotofail is composed of an on-path network MiTM and optional clients for the devices being tested. See docs/design.md for the overview and design goals of nogotofail.

##Dependencies Nogotofail depends only on Python 2.7 and pyOpenSSL>=0.13. The MiTM is designed to work on Linux machines and the transparent traffic capture modes are Linux specific and require iptables as well.

Additionally the Linux client depends on psutil.

##Getting started See docs/getting_started.md for setup and a walkthrough of nogotofail.

##Discussion For discussion please use our nogotofail Google Group.

About

An on-path blackbox network traffic security testing tool

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages

  • Python 61.1%
  • Java 38.9%