GitHub

therealaleph/sni-spoofing-rust

Rust implementation of patterniha's SNI-Spoofing DPI bypass technique. All credit for the original idea and method goes to @patterniha. A TCP forwarder that injects a fake TLS ClientHello with an ...
Bleeping Computer

Cloudflare Improves Privacy by Encrypting the SNI During TLS Negotiation

Cloudflare announces today support for encrypted Server Name Indication, a mechanism that makes it more difficult to track user's browsing. A web server can host multiple websites, with all of them ...
ZDNet

Let's Encrypt disables TLS-SNI-01 validation

Let's Encrypt has disabled TLS-SNI-01 validation after the discovery of an attack able to hijack certificates using the protocol. The certificate authority, which offers free SSL and TLS certificates ...
IEEE

Poster: Feasibility of Malware Traffic Analysis through TLS-Encrypted Flow Visualization

Abstract: With the wide adoption of TLS, malware's use of TLS is also growing fast. However, fine-grained feature selection in existing approaches is too burdensome. To this end, we propose to ...