The following Slide Share deck, OWASP DeepViolet TLS/SSL Java API and Tools, is one I provided to Black Hat staff after my live tool demonstration of the OWASP DeepViolet project at the Black Hat 2016 EU London Tools Arsenal. The deck was never shown at the event but I developed it as a way to communicate the value of the DeepViolet quickly to those who many be interested but did not attend.
Free world-wide virtual DevOps event. Listen in and ask questions from anywhere.
The sanitizer does not differentiate between malformed JSON sent by attackers or those originating from developer error. So it’s helpful in both cases but let me explain.
So what can you do with DeepViolet?
A picture is worth a thousand words so here is a sample of some of the scanning output.
DeepViolet can run from the command line and included in your shell scripts. A sample of the output looks like the following. DeepViolet can also be included in your own projects as an API. For more information about DeepViolet refer to the following information.OWASP DeepViolet TLS/SSL Scanner Code Project, main OWASP project landing page.
DeepViolet GitHub Project Page, main landing page for GitHub project code/documentation.
DOWNLOAD, current release binaries.