X.509-Attacker is a tool based on ASN.1-Attacker for creating arbitrary certificates; including especially invalid and malformed certificates.
In order to compile and use X.509-Attacker, you need to have Java and Maven installed. On Ubuntu you can install Maven by running:
$ sudo apt-get install maven
X.509-Attacker currently needs Java JDK 11 to run. If you have the correct Java version you can install X.509-Attacker as follows.
$ git clone https://github.com/tls-attacker/X509-Attacker.git
$ cd X509-Attacker
$ mvn clean install
If you want to use this project as a dependency, you do not have to compile it yourself and can include it in your pom .xml as follows.
<dependency>
<groupId>de.rub.nds</groupId>
<artifactId>x509-attacker</artifactId>
<version>3.0.0</version>
</dependency>
The framework was initially developed by Nils Kafka ([email protected]) during his master thesis. Extended by Joshua Waldner.
In 2023, the project was rewritten by Robert Merget (Technology Innovation Institute).
This framework is used by TLS-Attacker (https://github.com/tls-attacker/TLS-Attacker/)