Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-01-01 06:19:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add the $EXPERIMENTAL part to winshock

Browse Source 
... when checking other services as HTTP or RDP
This commit is contained in:
Dirk 2020-09-22 15:24:41 +02:00
parent 7d8cf71a94
commit 721d046a7f
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
testssl.sh
View File

@ -17606,6 +17606,9 @@ run_winshock() {
server_banner="$(grep -Eai '^Server:' $HEADERFILE)" server_banner="$(grep -Eai '^Server:' $HEADERFILE)"
elif [[ -s "$TEMPDIR/$NODEIP.service_detection.txt" ]]; then elif [[ -s "$TEMPDIR/$NODEIP.service_detection.txt" ]]; then
server_banner="$(grep -Eai '^Server:' "$TEMPDIR/$NODEIP.service_detection.txt")" server_banner="$(grep -Eai '^Server:' "$TEMPDIR/$NODEIP.service_detection.txt")"
elif "$EXPERIMENTAL"; then
# If testing e.g. an SMTP server
:
else else
# We can't use run_http_header here as it messes up the screen. We could automatically # We can't use run_http_header here as it messes up the screen. We could automatically
# run it when --winshock is requested though but this should suffice here. # run it when --winshock is requested though but this should suffice here.
@ -17636,6 +17639,9 @@ run_winshock() {
fileout "$jsonID" "OK" "not vulnerable" "$cve" "$cwe" fileout "$jsonID" "OK" "not vulnerable" "$cve" "$cwe"
outln outln
fi fi
elif "$EXPERIMENTAL"; then
out "seems "; pr_svrty_critical "vulnerable (NOT ok)"; outln "$check_patches"
fileout "${jsonID}" "CRITICAL" "seems vulnerable (NOT OK) $check_patches"
else else
pr_svrty_best "not vulnerable (OK)" pr_svrty_best "not vulnerable (OK)"
outln " - doesn't seem to be IIS 8.x" outln " - doesn't seem to be IIS 8.x"