Commit Graph

2117 Commits

Author SHA1 Message Date
Dirk Wetter 9ebf112858 Update Readme.md 2015-04-09 22:24:57 +02:00
Dirk 53e0955dfb FIX: missing server preferences, NEW: each cipher server preferences per protocol! 2015-04-09 22:08:48 +02:00
Dirk 7f984ea83f - 2015-04-09 21:45:22 +02:00
Dirk a98161acc9 - fixes to changes from Peter's better cmd line parsing
- cosmetc improvements (vulneraibilities)
2015-04-09 21:42:52 +02:00
Dirk Wetter eb73ffc053 Merge pull request #79 from PeterMosmans/refactoring
Refactored major parts of code
2015-04-09 21:38:29 +02:00
Peter Mosmans c8d169cc0f Removed GNU getopt
Minor fix to --poodle option
2015-04-07 18:05:52 +10:00
Peter Mosmans 9780e83895 Refactored major parts of code
Note that due to the refactoring of some status messages, the output will be slightly different (more verbose) than previous versions

Moved specific status messages to http_header()
Moved specific status messages to breach()
Moved specific status messages to ccs_injection()
Moved specific status messages to heartbleed()
Moved specific status messages to renego()
Moved specific status messages to crime()
Moved specific status messages to tls_poodle()
Moved specific status messages to freak()
Moved specific status messages to beast()

Added some more documentation for functions

Fixed typos in help

Created new function main:
This is the main function of testssl.sh
Refactored major part of the original main function

Created new function startup:
Parses the startup options

Created new function intialize_globals:
Initializes all used global variables

Created new function scanning_defaults:
Sets default scanning options when only one parameter (URI) is given

TODO: Refactor more/duplicate parts of functions

Note: For the new functions, fixed spaces (4) are used instead of tabs
2015-04-07 17:00:43 +10:00
Dirk 84aca9d9a3 FIX #80: show HTTP 401 2015-04-02 13:35:22 +02:00
Dirk 2cc56c4d1f NEW: added security headers 2015-04-02 13:04:57 +02:00
Dirk 8da96f78f2 - got rid of "strings" 2015-04-02 12:19:24 +02:00
Dirk 4bbd19ba03 - updated binaries from Peter. Necessary because handshake under rare circumstances
failed (routines:tls1_setup_key_block:cipher or hash unavailable:t1_enc.c:802.
  SLES 12 server, some ciphers under TLS 1.2
2015-04-02 11:46:12 +02:00
Dirk 940f51e74b protocol check via sockets now also for SSLv3 2015-03-31 10:34:30 +02:00
Dirk 9ed58b6202 cleanups / bsd date in tls time 2015-03-30 23:09:19 +02:00
Dirk 6c30386278 rechi 2015-03-30 15:03:29 +02:00
Dirk d9ae35fc7e open fixes from Rechi (pull request $67) 2015-03-30 14:59:44 +02:00
Dirk Wetter 7f4fc5902e Merge pull request #75 from feld/tr
Using square brackets in tr results in trying to match/replace them
2015-03-19 09:14:54 +01:00
Dirk Wetter f4c9f692d2 Merge pull request #76 from feld/printf
Fix variable directly referenced in printf
2015-03-19 09:14:32 +01:00
Mark Felder 819e6e6163 Fix variable directly referenced in printf 2015-03-18 15:43:06 -05:00
Mark Felder 63a1df1fe2 Using square brackets in tr results in trying to match/replace them 2015-03-18 15:42:21 -05:00
Dirk 0d3b7f343f Дилян 2015-03-17 22:14:05 +01:00
Dirk 2d0bfca343 - FIX for 3des cipher report (thx Дилян) 2015-03-17 22:12:25 +01:00
Dirk ca6ca5d47e - added two pairs of ciphers to server preference (thx Dilian) 2015-03-17 22:02:23 +01:00
Dirk 2faad9de9a - working tls handshake with bash sockets (not yet in production, hint: see option "-q" in the bottom) 2015-03-17 18:11:18 +01:00
Dirk c159af7f42 - check whether openssl is executable
- spaces to tabs
- adding hint to "aha" in help
2015-03-17 15:14:58 +01:00
Dirk 263535520f - FIX for date --> applied to other BSD systems too
- FIX for SNI output as it doensn';t make sense for non HTTP servives
- lines for RC4 and PFS shortenedA
- display all MX records to test before testing
- removed LOCERR, added CCS_MAX_WAITSOCK, HEARTBLEED_MAX_WAITSOCK
2015-03-17 12:22:21 +01:00
Dirk f8ba69f9fb - some internal code internal cleanups
- minor cosmetic output corrections
- preparation for bash sockets for SSLv3 to TLS 1.2
2015-03-16 00:22:51 +01:00
Dirk 4556108a72 further improvements through shellcheck 2015-03-15 16:59:29 +01:00
Dirk 68695bbad3 FIX #74 for sed BSD: doesn't like inline \n
headline for BEAST was missing
2015-03-15 16:10:14 +01:00
Dirk 655944bd4d - FIX: regression for wc -l w/o cat (3x)
- removal of unneccessary waitpid, inline
2015-03-15 14:41:34 +01:00
Dirk fbd383f345 - prework for checking hpkp fingerprints 2015-03-15 10:18:37 +01:00
Dirk 5cd4b8f73e - Shellcheck static analysis by Mark 2015-03-15 09:04:49 +01:00
Dirk Wetter bf411d8c11 Merge pull request #73 from feld/master
Shellcheck static analysis
2015-03-15 08:56:01 +01:00
Mark Felder 2684f5c392 Make date command work with both Linux and FreeBSD 2015-03-13 15:51:50 -05:00
Mark Felder 6f15652121 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:24:37 -05:00
Mark Felder 8cdd516ad1 more ps >/dev/null fixes
more useless cat
2015-03-13 15:24:16 -05:00
Mark Felder 8d965f7c71 More useless cat 2015-03-13 15:19:47 -05:00
Mark Felder 7babe7478d Remove 2>&1 for the ps $pid lines; it's unnecessary 2015-03-13 15:16:21 -05:00
Mark Felder c83e1b98e2 Merge branch 'master' of github.com:feld/testssl.sh 2015-03-13 15:12:45 -05:00
Mark Felder 8ad1cca0ab Remove useless kittens 2015-03-13 15:10:36 -05:00
Mark Felder 4cdc89aa61 Revert to 2>&1 > /dev/null order because it isn't behaving correctly. 2015-03-13 14:56:30 -05:00
Mark Felder 59ed025f36 Replace expr with $(( ))
https://github.com/koalaman/shellcheck/wiki/SC2003
2015-03-13 14:54:36 -05:00
Mark Felder 73202da2fd Fix missing single quote 2015-03-13 14:26:02 -05:00
Mark Felder b7b88a03e7 Fix order of the redirect
https://github.com/koalaman/shellcheck/wiki/SC2069
2015-03-13 10:00:14 -05:00
Mark Felder 305fcca2ae Replace backticks with $(..)
https://github.com/koalaman/shellcheck/wiki/SC2006
2015-03-13 09:52:39 -05:00
Dirk b5a568da62 - @feld 2015-03-13 12:21:06 +01:00
Dirk c1ca5a641b - FIX garbled output for servers with a TLS reply on SSLv2 socket call 2015-03-13 12:20:19 +01:00
Dirk Wetter 74d984cebc Merge pull request #72 from feld/feld
Minor optimizations to reduce unnecessary forking
2015-03-13 11:00:52 +01:00
Mark Felder f037a3f811 Minor optimizations to redunce unnecessary forking 2015-03-11 12:13:38 -05:00
Dirk d8d8318f6d FIX for #71 (proper workaround for lastpipe in rc4, pfs, and cbc) 2015-03-09 08:07:45 +01:00
Dirk 77e28922c1 - NEW: proper check for freak CVE-2015-0204
- NEW: check for number of keys for hpkp
- cleanup hsts+hpkp
2015-03-07 09:51:55 +01:00