Scan web servers cryptographic parameters and vulnerabilities
Project description
____ _ _____ _
| _ \ ___ _ __ | |_ ___ _ __ ___ _ __ |_ _|__ ___ | |___
| |_) / _ \ '_ \| __/ _ \ '__/ _ \ '_ \ | |/ _ \ / _ \| / __|
| __/ __/ | | | || __/ | | __/ |_) | | | (_) | (_) | \__ \
|_| \___|_| |_|\__\___|_| \___| .__/ |_|\___/ \___/|_|___/
|_|
ssltest
Scan web servers cryptographic parameters and chosen vulnerabilities.
Documentation
Documentation is available here.
Main features
Scan or test:
- Supported SSL/TLS protocols
- Detailed information about the certificate
- Detailed information about the cipher suite the connection was made with
- Web server software used by the server
- Chosen vulnerability tests
- Supported cipher suites for all SSL/TLS protocols
Installation
To install from pypi run:
pip install ssltest
To install straight from source run:
git clone git@github.com:SamoKopecky/ssltest.git && \
cd ssltest && \
pip install .
Nmap is required for some functions of the script (--ns/--nmap-scan and --nd/--nmap-discover), install on debian-like distros with:
apt-get install -y nmap
Contributing
Check the CONTRIBUTING.MD file
Usage examples
Basic scan with no vulnerability tests:
ssltest -u nmap.org -t 0
Scan all vulnerability tests and available cipher suites:
ssltest -u nmap.org -cs
Scan for Heartbleed vulnerability, scan the whole certificate chain and shorted alternative names in the output:
ssltest -u nmap.org -t 9 -cc -sn
Scan using custom config files in debug mode:
ssltest -u nmap.org -c ~/.config/custom_ssltest -d
Licence
Copyright (c) 2022 HACKER Consulting s.r.o.
This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see https://www.gnu.org/licenses/.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file ssltest-0.2.2.tar.gz.
File metadata
- Download URL: ssltest-0.2.2.tar.gz
- Upload date:
- Size: 55.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.11.1
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d4b2d2552df25c630acf6ff12bef4a28a302eaf060b0e194977600b875784995
|
|
| MD5 |
7bb08437b10d05258bf6d6d41f6aa038
|
|
| BLAKE2b-256 |
a2546131511827764c510b73893683d2d4478455e67073fa23bc4832e4296696
|
File details
Details for the file ssltest-0.2.2-py3-none-any.whl.
File metadata
- Download URL: ssltest-0.2.2-py3-none-any.whl
- Upload date:
- Size: 74.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.11.1
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
09810430c2056c86e88e0114899f1e3cd04cf7f96033d426390291732173e242
|
|
| MD5 |
6fec768aadd880050bced870ca8be482
|
|
| BLAKE2b-256 |
dd033aff3970d5acf9b3840084e801412d26591411c3c9b982fd3d1fc3091dc1
|
