T

tls

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language API to access the secure communications protocols. https://www.gnutls.org

CryptoLyzer is a fast, flexible, and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI.

Open client for Cisco AnyConnect, Juniper, Pulse, GlobalProtect, F5, Fortinet and Array Networks (IBM Cloud) VPNs

LibreDNS website

libredns.gr

Password Manager Daemon is a server that provides a way for applications to securely store and retrieve data at a centralized location. The data is stored in an XML file and clients connect and send commands to manipulate the data.

This is a library making it easy to patch applications to send commands to PWMD. There is an included command line client 'pwmc' that reads protocol commands from stdin or in an interactive shell-like mode and sends them to the pwmd server.

TLS-enabled mail retrieval (POP3/IMAP/ETRN/ODMR) and forwarding (SMTP/LMTP/MDA) agent.

Note the Git branches: legacy_6x (6.5.x release maintenance) and next (mid-term future 7.x.x development)

Cryptographic protocol and security-related protocol piece parser.

Free repository of cryptography-related data.

CA store + Partial chain handler

High-performance QUIC protocol implementation in Zig. RFC 9000/9001/9002 compliant with TLS 1.3, HTTP/3 support, and cross-platform compatibility (Linux, macOS, Windows).

QUIC-native TLS 1.3 implementation in Zig. RFC 8446/9001 compliant with zero external dependencies.

Order TLS certificates using ACME TLS-ALPN-01

Certificate Authority manager for home networks

Local certificate authority

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

For more information visit https://dheatattack.com

This project focuses on an automated certificate generation service powered by Ansible playbooks.

List the TLS client ciphersuites.

cdt-nwa is a network traffic analysis tool for identifying cipher suites, that require migration to Post-Quantum Cryptography (PQC)

RATproxy - reverse auto TLS proxy. Automatically fetches a certificate for you. All you have to supply is the domain you want to serve traffic for and off you go. It will regenerate the certificate as required.