Paris & San Francisco · Software & Security

Alban Diquet

Software engineer, security researcher, digital investigator.

About

I currently work as a Cybersecurity and Tech expert at the Parquet National Financier in Paris, aiding judicial officers in high-stakes financial and corruption investigations—extracting insights from seized digital media, handling data leaks, and building analytical models to surface signal in large datasets.

Before that, I worked for nine years as CTO of Data Theorem, where I built and led the release of several cybersecurity SaaS products dedicated to securing mobile, web, API, and cloud applications at scale.

Before that, I spent several years in application security, mobile platforms, and the cryptographic plumbing that holds the modern internet together — auditing client/server software, breaking and fixing TLS implementations, and writing open-source tools.

I am occasionally available for consulting work, and I sometimes write technical articles at In Security.

Open Source

Tools I've authored or maintained over the years, used in the security community for testing TLS configurations and mobile applications.

SSLyze Fast and comprehensive SSL/TLS configuration scanner Python
TrustKit Drag-and-drop SSL pinning & reporting for iOS, macOS, Android iOS · Android
Trust Store Observatory Continuous monitoring of major platforms' root CA stores Python
SSL Kill Switch Disable SSL validation in iOS & macOS apps (archived) iOS · Pentest
SSL Conservatory Reference implementations for SSL clients (archived) C
Introspy Runtime security profiler for iOS apps (archived) iOS

Research & Talks

I've presented at Black Hat USA, Hack in the Box, BlueHat, OWASP AppSec, Ruxcon, and Cloud Expo, mostly on TLS, iOS internals, and mobile security research. I was also the technical reviewer for iOS Application Security (No Starch Press, 2016).

2019 Serverless vs Containers: building and securing real-world microservices Cloud Expo 2019
2017–18 Where, how, and why is SSL traffic on mobile getting intercepted? BlueHat v17 · OWASP AppSec California
2015 TrustKit: Code Injection on iOS 8 for the Greater Good Black Hat USA
2014 It Just (Net)Works: The Truth About iOS 7's Multipeer Connectivity Framework Black Hat USA · HITB Kuala Lumpur — CVE-2015-5851
2014 Security Audit of Cryptocat iOS iSEC Partners — lead tester (commissioned by OTF)
2013 Introspy: Security Profiling for Blackbox iOS & Android Ruxcon 2013
2012 Everything you've always wanted to know about certificate validation with OpenSSL Whitepaper
2012 When security gets in the way: PenTesting mobile apps that use certificate pinning Black Hat USA

Contact

Want to talk shop, collaborate on a project, or simply say hello?

Find me on GitHub, LinkedIn, Mastodon — or by email at alban [at] adqt [dot] fr.