sslsniff, there’s an app for that!
Moxie Marlinspike just released an updated (10 years later!) version of sslsniff that includes the iOS BasicConstraints vulnerabilities that were published today. You can read the announcement here or go straight to the details which includes the download link.
Friends don’t allow other friends to permit leaf certificates to act as signing certificates, or do man in the middle (MITM) attacks against SSL/TLS.
Need this translated for your organization? PrivaSecTech offers confidential briefings, policy reviews, workshops, and privacy/security advisory for teams that need to decide what to do next.