SSLsplit is a tool that performs man-in-the-middle attacks against SSL/TLS encrypted network connections for network forensics and penetration testing. It terminates SSL/TLS and initiates a new connection to the original destination, logging all data transmitted. It supports plain TCP and SSL, HTTP and HTTPS, and IPv4 and IPv6. For SSL and HTTPS, it generates and signs forged X509v3 certificates on-the-fly using the original certificate's subject DN and subjectAltName extension. It supports Server Name Indication, RSA, DSA, and ECDSA keys, and DHE and ECDHE cipher suites. It can also use existing certificates if the private key is available.
Moneychanger is a simple client GUI built on top of Open Transactions, a financial crypto library. Moneychanger can be used to create pseudonyms, issue currencies, open accounts, withdraw and deposit cash (untraceable digital cash), write and deposit cheques, trade on markets, and much, much more.
Open Transactions is a solid, easy-to-use, financial crypto and digital cash library, including an API, server, and test client. It features anonymous numbered accounts, untraceable digital cash, triple-signed receipts, basket currencies, and signed XML contracts. It also supports cheques, invoices, payment plans, markets with trades, and other instruments. It uses OpenSSL and Lucre blinded tokens.
libpwstor is a library implementing a password storage format for C programmers. This format provides a reasonable level of security by utilizing SHA-256 in addition to a random salt to mitigate dictionary and rainbow table attacks. In addition to the core functionality, libpwstor also offers some additional functions such as Base64 encoding and decoding. All functionality is implemented and designed in such a way as to be easy to use for C programmers of varying skill levels, while preserving reasonable security in the underlying storage format.
The Shrew Soft VPN Client for Unix is a free IPsec Client for FreeBSD, NetBSD, and Linux based operating systems. It can be used to communicate with systems running ipsec-tools. The Unix client utilizes the IPsec kernel support included with the operating system, and comes with the complete Internet Key Exchange daemon and client front end application source code. A Windows version is also available.
The CyaSSL embedded SSL library is a lightweight SSL library written in ANSI C and targeted for embedded and RTOS environments, primarily because of its small size, speed, and feature set. It is commonly used in standard operating environments and cloud services as well because of its royalty-free pricing and excellent cross platform support. CyaSSL supports industry standards up to the current TLS 1.2 and DTLS 1.2 levels, is up to 20 times smaller than OpenSSL, and offers progressive ciphers such as HC-128, RABBIT, and NTRU.
PyKCS11 is a PKCS#11 wrapper for Python. It lets you access almost all PKCS#11 functions and data types using any PKCS#11 library, such as the various modules supplied by smartcard vendors. It comes with two interfaces: a low level and very thin interface over the original PKCS#11 API, generated using the SWIG compiler (designed for library tests), and a high level interface that offers simpler access (with few limits) to the PKCS#11 APIs.