Pinned Repositories
CryptoAC
CryptoAC is an open-source tool for the E2E protection of sensitive data through cryptographic enforcement of access control policies.
micro-id-gym
mIDAssistant
mig
Micro-ID-Gym is a software suite designed to aid security researchers and developers in testing Identity Management protocols implementations
mig-t
A web pentesting and compliance tool to help security testers automate their testing activites.
mqttsa
A tool to assist IoT developers in securing MQTT-based IoT deployments
pullprinting
Pullprinting project developed in Security&Trust in FBK
stfbk.github.io
Website of the Security & Trust Research Unit, in Fondazione Bruno Kessler
tlsassistant
An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.
vc-saml-node
Verifiable Credentials issued and verified by SAML service providers -- a proof of concept implementation
Security & Trust's Repositories
stfbk/mqttsa
A tool to assist IoT developers in securing MQTT-based IoT deployments
stfbk/tlsassistant
An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.
stfbk/micro-id-gym
stfbk/mig-t
A web pentesting and compliance tool to help security testers automate their testing activites.
stfbk/stfbk.github.io
Website of the Security & Trust Research Unit, in Fondazione Bruno Kessler
stfbk/CryptoAC
CryptoAC is an open-source tool for the E2E protection of sensitive data through cryptographic enforcement of access control policies.
stfbk/mig
Micro-ID-Gym is a software suite designed to aid security researchers and developers in testing Identity Management protocols implementations
stfbk/pullprinting
Pullprinting project developed in Security&Trust in FBK
stfbk/vc-saml-node
Verifiable Credentials issued and verified by SAML service providers -- a proof of concept implementation
stfbk/ACE
AC state-change rule extraction procedurE
stfbk/ACME
Access Control Mechanisms Evaluator
stfbk/AuBACE
Audit-Based Access Control Enforcement (AuBACE) is a DLT-oriented framework to support controlled information sharing
stfbk/i2cns-19
stfbk/mallodroid
Find broken SSL certificate validation in Android Apps
stfbk/mIDAssistant_iGov
An Android Studio Plugin to Integrate OpenID Connect iGov Profile within Native Apps
stfbk/Mitigating-Debugger-based-Attacks-to-Java-Applications-with-Self-Debugging
This repository collects complementary material for the article "Mitigating Debugger-based Attacks to Java Applications with Self-Debugging".
stfbk/tls-table
Generates mappings between IANA TLS hex values and their corresponding cipher names in GnuTLS, NSS, and OpenSSL
stfbk/ITOTLab
An open and flexible cybersecurity training laboratory in IT/OT infrastructures
stfbk/mIDAssistant
stfbk/.github
stfbk/A-Secure-and-Quality-of-Service-Aware-Solution-for-the-End-to-End-Protection-of-IoT-Applications
stfbk/CODASPY2020_FormalAnalysis
This repository contains the complementary files referred to in the paper "The Good, the Bad and the (Not So) Ugly of Out-Of-Band Authentication with eID Cards and Push Notifications: Design, Formal and Risk Analysis", accepted to the 10th ACM Conference on Data and Application Security and Privacy (CODASPY ‘20).
stfbk/MSRMP
Multi-Stakeholder Risk Assessment Tool
stfbk/SECRYPT2021
stfbk/socrates-replication-package
SoCRATES is framework for Ethereum Smart Contract test cases generation
stfbk/TDSC2022_SymbolicAnalysis
stfbk/tls-compliance-dataset
A dataset containing TLS requirements to assess a webserver's compliance with national cybersecurity agencies
stfbk/TLS-Scanner
The TLS-Scanner Module from TLS-Attacker - based on @IvanValentini's work