CertWatch Discuss Source code

Machine-in-the-middle Detection and Monitoring for XMPP Servers

This service allows you to check your XMPP server's TLS setup, helps you publicly store the hash of the public key in a secure way, and then monitors your server to make sure that connections to it get the same public key that you have configured and sends notifications if anything changes (which may indicate a machine-in-the-middle attack on your service).

Checks are done over Tor to prevent easy detection of the probes by an attacker.