Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-01-03 23:39:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

fine tuning on banner

Browse Source
This commit is contained in:
Dirk 2015-01-15 20:29:46 +01:00
parent 4c6f0d9a50
commit 5853202efd
1 changed files with 13 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
testssl.sh
View File

@ -300,7 +300,7 @@ EOF
# Catch: any URL can be vulnerable. I am testing now only the root. URL! # Catch: any URL can be vulnerable. I am testing now only the root. URL!
outln "(only \"$url\" tested)" outln "(only \"$url\" tested)"
else else
magentaln "Test failed (requsting header stalled)" litemagentaln "failed (HTTP header request stalled)"
ret=3 ret=3
fi fi
return $ret return $ret
@ -380,7 +380,7 @@ EOF
mv $HEADERFILE.2 $HEADERFILE # sed'ing in place doesn't work with BSD and Linux simultaneously mv $HEADERFILE.2 $HEADERFILE # sed'ing in place doesn't work with BSD and Linux simultaneously
ret=0 ret=0
else else
magenta " header request stalled" litemagentaln "failed (HTTP header request stalled)"
egrep -awq "301|302|^Location" $HEADERFILE egrep -awq "301|302|^Location" $HEADERFILE
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
redir2=`grep -a '^Location' $HEADERFILE | sed 's/Location: //' | tr -d '\r\n'` redir2=`grep -a '^Location' $HEADERFILE | sed 's/Location: //' | tr -d '\r\n'`
@ -459,15 +459,14 @@ serverbanner() {
fi fi
grep -ai '^Server' $HEADERFILE >$TMPFILE grep -ai '^Server' $HEADERFILE >$TMPFILE
if [ $? -eq 0 ]; then if [ $? -eq 0 ]; then
#out=`cat $TMPFILE | sed -e 's/^Server: //' -e 's/^server: //' -e 's/^[[:space:]]//'`
serverbanner=`cat $TMPFILE | sed -e 's/^Server: //' -e 's/^server: //'` serverbanner=`cat $TMPFILE | sed -e 's/^Server: //' -e 's/^server: //'`
# if [ x"$out" == "x\n" -o x"$out" == "x\n\r" -o x"$out" == "x" ]; then if [ x"$serverbanner" == "x\n" -o x"$serverbanner" == "x\n\r" -o x"$serverbanner" == "x" ]; then
# outln "(line exists but empty string)" outln "banner exists but empty string"
# else else
outln "$serverbanner" outln "$serverbanner"
# fi fi
else else
outln "(None, interesting!)" outln "no HTTP header, interesting!"
fi fi
bold " Application " bold " Application "
@ -486,7 +485,7 @@ serverbanner() {
# fi # fi
#done #done
else else
litegreyln " (None, checked \"/\")" greyln " no banner at \"/\""
fi fi
tmpfile_handle $FUNCNAME.txt tmpfile_handle $FUNCNAME.txt
@ -2272,10 +2271,10 @@ case "$1" in
if [[ $SERVICE == "HTTP" ]]; then if [[ $SERVICE == "HTTP" ]]; then
outln; blue "--> Testing HTTP Header response" outln; blue "--> Testing HTTP Header response"
outln "\n" outln "\n"
hsts $URL_PATH" ; ret=`expr $? + $ret` hsts "$URL_PATH" ; ret=`expr $? + $ret`
hpkp $URL_PATH" ; ret=`expr $? + $ret` hpkp "$URL_PATH" ; ret=`expr $? + $ret`
serverbanner $URL_PATH" ; ret=`expr $? + $ret` serverbanner "$URL_PATH" ; ret=`expr $? + $ret`
cookieflags $URL_PATH" ; ret=`expr $? + $ret` cookieflags "$URL_PATH" ; ret=`expr $? + $ret`
fi fi
rc4 ; ret=`expr $? + $ret` rc4 ; ret=`expr $? + $ret`
@ -2283,6 +2282,6 @@ case "$1" in
exit $ret ;; exit $ret ;;
esac esac
# $Id: testssl.sh,v 1.166 2015/01/14 11:23:52 dirkw Exp $ # $Id: testssl.sh,v 1.167 2015/01/15 19:29:45 dirkw Exp $
# vim:ts=5:sw=5 # vim:ts=5:sw=5