The stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server. It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the programs’ code.
Stunnel uses the OpenSSL library for cryptography, so it supports whatever cryptographic algorithms are compiled into the library.
Posts tagged with security.
Subscribe to the security tag feed.
Envoy helps you to manage ssh keys in similar fashion to keychain, but done in c, takes advantage of cgroups and systemd.
…a simple bash script… that runs on OSX (and can be easily adapted to other OS’s) that will randomize your MAC address every 30 seconds, and help prevent MAC-based tracking…
Keychain helps you to manage ssh and GPG keys in a convenient and secure manner. It acts as a frontend to ssh-agent and ssh-add, but allows you to easily have one long running ssh-agent process per system, rather than the norm of one ssh-agent per login session.
The Monkeysphere project’s goal is to extend OpenPGP’s web of trust to new areas of the Internet to help us securely identify servers we connect to, as well as each other while we work online. The suite of Monkeysphere utilities provides a framework to transparently leverage the web of trust for authentication of TLS/SSL communications through the normal use of tools you are familiar with, such as your web browser or secure shell.
This also enhances these tools by adding the possibility for key transitions, transitive identifications, revocations, and expirations of public keys1. It also actively invites broader participation in the OpenPGP web of trust.
git-crypt enables transparent encryption and decryption of files in a git repository. Files which you choose to protect are encrypted when committed, and decrypted when checked out.
git-crypt lets you freely share a repository containing a mix of public and private content. git-crypt gracefully degrades, so developers without the secret key can still clone and commit to a repository with encrypted files. This lets you store your secret material (such as keys or passwords) in the same repository as your code, without requiring you to lock down your entire repository.
Send encrypted messages by one click.
No signup needed if your public key is stored on a public key server.
Spiped (pronounced “ess-pipe-dee”) is a utility for creating symmetrically encrypted and authenticated pipes between socket addresses, so that one may connect to one address (e.g., a UNIX socket on localhost) and transparently have a connection established to another address (e.g., a UNIX socket on a different system). This is similar to ‘ssh -L’ functionality, but does not use SSH and requires a pre-shared symmetric key.
Share files, passwords, and more with self-destructing private links
Drag any file to the [OS X] menu bar. Choose 48 hours or one download. Torpedo will automatically copy a link to your clipboard that you can send to anyone you’d like. All they need is a web browser.
WPScan is a black box WordPress vulnerability scanner.
You tell [Kitestring] that you’re going on a trip, and then it checks up on you (via SMS) to make sure you haven’t been mugged or assaulted. You reply to the SMS messages (or check in on the website) to confirm your well-being. If you “go dark,” the app alerts a list of emergency contacts that you set up ahead of time.
DissidentX is a censorship resistance tool.
It has the capability of steganographically encoding messages in files. Special features include:
- Messages cannot be decoded without the key
- A single decoder for all file types and encoding techniques, including all future ones
- Format-specific encoders can be easily written without having to worry about information theoretic encoding or cryptography
- Support for multiple messages to multiple keys in a single file