ViperFin v1.1.1 - security and reliability fixes

📋 Changelog

v1.1.1 (current — security & reliability fixes)

• TLS 1.0 → 1.2 on server listener — raised MinVersion from TLS 1.0 to TLS 1.2. Client mode retains TLS 1.0 intentionally to fingerprint legacy servers.
• Silent capture truncation fixed — buffer raised from 4 KB to 16 KB (full TLS record maximum). ReadTruncated() method added. [!] Warning printed when limit is hit — previously a truncated ClientHello would produce a wrong JA3 hash silently.
• --insecure now prints a visible warning — [!] Warning: TLS certificate verification is DISABLED printed before connecting. A cert mismatch can itself be an indicator of compromise.
• SortedCurveNames dead code removed — sorting curves alphabetically loses ClientHello field order which is semantically meaningful for fingerprinting.
• .gitignore hardened — removed Kali dev environment metadata. Added *.password, *.secret, *.key, *.pem, *.pfx.

ViperFin v1.0.0

JA3/JA3S TLS fingerprinting tool written in Go. Parses raw TLS ClientHello and ServerHello messages at the byte level — no external dependencies, pure Go stdlib.