- FIX regression: more_flags execution was missing

- FIX regression: capitalized/all lowercase headers weren't detected
- if socksend is blocked (IDS) output looks better and is reported as test didn't succeed
- no secure cookie or Httponly will be marked as brown
- tput color yellow is now brown
This commit is contained in:
Dirk 2015-04-14 13:16:43 +02:00
parent 9d5168dbb5
commit f682c5ceea

View File

@ -286,7 +286,7 @@ pr_reverse() { [[ "$COLOR" -ne 0 ]] && out "\033[7m$1" || out "$1"; pr_off;
# empty vars if we have no color: # empty vars if we have no color:
red="" red=""
green="" green=""
yellow="" brown=""
blue="" blue=""
off="" off=""
bold="" bold=""
@ -295,7 +295,7 @@ underline=""
if [[ "$COLOR" -eq 2 ]]; then if [[ "$COLOR" -eq 2 ]]; then
red=$(tput setaf 1) red=$(tput setaf 1)
green=$(tput setaf 2) green=$(tput setaf 2)
yellow=$(tput setaf 3) brown=$(tput setaf 3)
blue=$(tput setaf 4) blue=$(tput setaf 4)
off=$(tput sgr0) off=$(tput sgr0)
fi fi
@ -551,8 +551,8 @@ hpkp() {
emphasize_numbers_in_headers(){ emphasize_numbers_in_headers(){
# see http://www.grymoire.com/Unix/Sed.html#uh-3 # see http://www.grymoire.com/Unix/Sed.html#uh-3
# outln "$1" | sed "s/[0-9]*/$yellow&$off/g" # outln "$1" | sed "s/[0-9]*/$brown&$off/g"
outln "$1" | sed "s/\([0-9]\)/$yellow\1$off/g" outln "$1" | sed "s/\([0-9]\)/$brown\1$off/g"
} }
@ -620,14 +620,16 @@ cookieflags() { # ARG1: Path, ARG2: path
fi fi
nr_secure=$(grep -iac secure $TMPFILE) nr_secure=$(grep -iac secure $TMPFILE)
case $nr_secure in case $nr_secure in
0) out "$negative_word secure, " ;; 0) pr_brown "$negative_word" ;;
[123456789]) pr_litegreen "$nr_secure/$nr_cookies"; out "secure, ";; [123456789]) pr_litegreen "$nr_secure/$nr_cookies";;
esac esac
out "secure, "
nr_httponly=$(grep -cai httponly $TMPFILE) nr_httponly=$(grep -cai httponly $TMPFILE)
case $nr_httponly in case $nr_httponly in
0) out "$negative_word HttpOnly" ;; 0) pr_brown "$negative_word" ;;
[123456789]) pr_litegreen "$nr_httponly/$nr_cookies"; out "HttpOnly" ;; [123456789]) pr_litegreen "$nr_httponly/$nr_cookies";;
esac esac
out "HttpOnly"
else else
out "(none issued at \"$url\")" out "(none issued at \"$url\")"
fi fi
@ -657,7 +659,7 @@ moreflags() {
ret=0 ret=0
first=true first=true
for f2t in $flags2test; do for f2t in $flags2test; do
result_str=$(grep "^$f2t" $TMPFILE) result_str=$(grep -i "^$f2t" $TMPFILE)
[ -z "$result_str" ] && continue [ -z "$result_str" ] && continue
if $first; then if $first; then
pr_litegreenln "$result_str" pr_litegreenln "$result_str"
@ -783,11 +785,12 @@ socksend() {
} }
#FIXME: This is only for HB and CCS, others use sockread_serverhello()
sockread() { sockread() {
[ "x$2" = "x" ] && maxsleep=$MAX_WAITSOCK || maxsleep=$2 [ "x$2" = "x" ] && maxsleep=$MAX_WAITSOCK || maxsleep=$2
ret=0 ret=0
ddreply=$(mktemp /tmp/ddreply.XXXXXX) || return 7 ddreply=$(mktemp $TEMPDIR/ddreply.XXXXXX) || return 7
dd bs=$1 of=$ddreply count=1 <&5 2>/dev/null & dd bs=$1 of=$ddreply count=1 <&5 2>/dev/null &
pid=$! pid=$!
@ -1644,8 +1647,8 @@ spdy() {
fd_socket() { fd_socket() {
# arg doesn't work here # arg doesn't work here
if ! exec 5<> /dev/tcp/$NODEIP/$PORT; then if ! exec 5<> /dev/tcp/$NODEIP/$PORT 2>/dev/null; then
pr_magenta "$(basename "$0"): unable to open a socket to $NODEIP:$PORT" pr_magentaln "$(basename "$0"): unable to open a socket to $NODEIP:$PORT"
return 6 return 6
fi fi
return 0 return 0
@ -1991,10 +1994,14 @@ tls_sockets() {
[[ "$DEBUG" -ge 2 ]] && echo "sending client hello..." [[ "$DEBUG" -ge 2 ]] && echo "sending client hello..."
if [[ "$tls_low_byte" == "03" ]] ; then if [[ "$tls_low_byte" == "03" ]] ; then
socksend_tls_clienthello "$tls_low_byte" "$TLS12_CIPHER" socksend_tls_clienthello "$tls_low_byte" "$TLS12_CIPHER"
ret=$? # 6 means opensing socket didn't succeed, e.g. timeout
else else
socksend_tls_clienthello "$tls_low_byte" "$TLS_CIPHER" socksend_tls_clienthello "$tls_low_byte" "$TLS_CIPHER"
ret=$? # 6 means opensing socket didn't succeed, e.g. timeout
fi fi
# if sending didn't succeed we don't bother
if [ $ret -eq 0 ]; then
sockread_serverhello 32768 0 sockread_serverhello 32768 0
[[ "$DEBUG" -ge 2 ]] && outln "reading server hello..." [[ "$DEBUG" -ge 2 ]] && outln "reading server hello..."
if [[ "$DEBUG" -ge 3 ]]; then if [[ "$DEBUG" -ge 3 ]]; then
@ -2026,6 +2033,7 @@ tls_sockets() {
fi fi
fi fi
debugme outln debugme outln
fi
close_socket close_socket
TMPFILE=$SOCK_REPLY_FILE TMPFILE=$SOCK_REPLY_FILE
@ -3247,6 +3255,7 @@ main() {
serverbanner "$URL_PATH" serverbanner "$URL_PATH"
applicationbanner "$URL_PATH" applicationbanner "$URL_PATH"
cookieflags "$URL_PATH" cookieflags "$URL_PATH"
moreflags "$URL_PATH"
else else
pr_litemagentaln " Wrong usage: You're not targetting a HTTP service" pr_litemagentaln " Wrong usage: You're not targetting a HTTP service"
ret=$((2 + ret)) ret=$((2 + ret))
@ -3277,5 +3286,5 @@ main() {
main "$@" main "$@"
# $Id: testssl.sh,v 1.225 2015/04/14 08:14:43 dirkw Exp $ # $Id: testssl.sh,v 1.226 2015/04/14 11:16:42 dirkw Exp $
# vim:ts=5:sw=5 # vim:ts=5:sw=5