Dirk
a12d39769f
- underline CN, SAN and issuer deutschepost case (see sourceforge.net/p/ssllabs/mailman/message/33764851/)
2015-04-10 15:15:47 +02:00
Dirk Wetter
bfcd684e19
Update Readme.md
2015-04-10 10:13:30 +02:00
Dirk Wetter
9ebf112858
Update Readme.md
2015-04-09 22:24:57 +02:00
Dirk
53e0955dfb
FIX: missing server preferences, NEW: each cipher server preferences per protocol!
2015-04-09 22:08:48 +02:00
Dirk
7f984ea83f
-
2015-04-09 21:45:22 +02:00
Dirk
a98161acc9
- fixes to changes from Peter's better cmd line parsing
...
- cosmetc improvements (vulneraibilities)
2015-04-09 21:42:52 +02:00
Dirk Wetter
eb73ffc053
Merge pull request #79 from PeterMosmans/refactoring
...
Refactored major parts of code
2015-04-09 21:38:29 +02:00
Peter Mosmans
c8d169cc0f
Removed GNU getopt
...
Minor fix to --poodle option
2015-04-07 18:05:52 +10:00
Peter Mosmans
9780e83895
Refactored major parts of code
...
Note that due to the refactoring of some status messages, the output will be slightly different (more verbose) than previous versions
Moved specific status messages to http_header()
Moved specific status messages to breach()
Moved specific status messages to ccs_injection()
Moved specific status messages to heartbleed()
Moved specific status messages to renego()
Moved specific status messages to crime()
Moved specific status messages to tls_poodle()
Moved specific status messages to freak()
Moved specific status messages to beast()
Added some more documentation for functions
Fixed typos in help
Created new function main:
This is the main function of testssl.sh
Refactored major part of the original main function
Created new function startup:
Parses the startup options
Created new function intialize_globals:
Initializes all used global variables
Created new function scanning_defaults:
Sets default scanning options when only one parameter (URI) is given
TODO: Refactor more/duplicate parts of functions
Note: For the new functions, fixed spaces (4) are used instead of tabs
2015-04-07 17:00:43 +10:00
Dirk
84aca9d9a3
FIX #80 : show HTTP 401
2015-04-02 13:35:22 +02:00
Dirk
2cc56c4d1f
NEW: added security headers
2015-04-02 13:04:57 +02:00
Dirk
8da96f78f2
- got rid of "strings"
2015-04-02 12:19:24 +02:00
Dirk
4bbd19ba03
- updated binaries from Peter. Necessary because handshake under rare circumstances
...
failed (routines:tls1_setup_key_block:cipher or hash unavailable:t1_enc.c:802.
SLES 12 server, some ciphers under TLS 1.2
2015-04-02 11:46:12 +02:00
Dirk
940f51e74b
protocol check via sockets now also for SSLv3
2015-03-31 10:34:30 +02:00
Dirk
9ed58b6202
cleanups / bsd date in tls time
2015-03-30 23:09:19 +02:00
Dirk
6c30386278
rechi
2015-03-30 15:03:29 +02:00
Dirk
d9ae35fc7e
open fixes from Rechi (pull request $67)
2015-03-30 14:59:44 +02:00
Dirk Wetter
7f4fc5902e
Merge pull request #75 from feld/tr
...
Using square brackets in tr results in trying to match/replace them
2015-03-19 09:14:54 +01:00
Dirk Wetter
f4c9f692d2
Merge pull request #76 from feld/printf
...
Fix variable directly referenced in printf
2015-03-19 09:14:32 +01:00
Mark Felder
819e6e6163
Fix variable directly referenced in printf
2015-03-18 15:43:06 -05:00
Mark Felder
63a1df1fe2
Using square brackets in tr results in trying to match/replace them
2015-03-18 15:42:21 -05:00
Dirk
0d3b7f343f
Дилян
2015-03-17 22:14:05 +01:00
Dirk
2d0bfca343
- FIX for 3des cipher report (thx Дилян)
2015-03-17 22:12:25 +01:00
Dirk
ca6ca5d47e
- added two pairs of ciphers to server preference (thx Dilian)
2015-03-17 22:02:23 +01:00
Dirk
2faad9de9a
- working tls handshake with bash sockets (not yet in production, hint: see option "-q" in the bottom)
2015-03-17 18:11:18 +01:00
Dirk
c159af7f42
- check whether openssl is executable
...
- spaces to tabs
- adding hint to "aha" in help
2015-03-17 15:14:58 +01:00
Dirk
263535520f
- FIX for date --> applied to other BSD systems too
...
- FIX for SNI output as it doensn';t make sense for non HTTP servives
- lines for RC4 and PFS shortenedA
- display all MX records to test before testing
- removed LOCERR, added CCS_MAX_WAITSOCK, HEARTBLEED_MAX_WAITSOCK
2015-03-17 12:22:21 +01:00
Dirk
f8ba69f9fb
- some internal code internal cleanups
...
- minor cosmetic output corrections
- preparation for bash sockets for SSLv3 to TLS 1.2
2015-03-16 00:22:51 +01:00
Dirk
4556108a72
further improvements through shellcheck
2015-03-15 16:59:29 +01:00
Dirk
68695bbad3
FIX #74 for sed BSD: doesn't like inline \n
...
headline for BEAST was missing
2015-03-15 16:10:14 +01:00
Dirk
655944bd4d
- FIX: regression for wc -l w/o cat (3x)
...
- removal of unneccessary waitpid, inline
2015-03-15 14:41:34 +01:00
Dirk
fbd383f345
- prework for checking hpkp fingerprints
2015-03-15 10:18:37 +01:00
Dirk
5cd4b8f73e
- Shellcheck static analysis by Mark
2015-03-15 09:04:49 +01:00
Dirk Wetter
bf411d8c11
Merge pull request #73 from feld/master
...
Shellcheck static analysis
2015-03-15 08:56:01 +01:00
Mark Felder
2684f5c392
Make date command work with both Linux and FreeBSD
2015-03-13 15:51:50 -05:00
Mark Felder
6f15652121
Merge branch 'master' of github.com:feld/testssl.sh
2015-03-13 15:24:37 -05:00
Mark Felder
8cdd516ad1
more ps >/dev/null fixes
...
more useless cat
2015-03-13 15:24:16 -05:00
Mark Felder
8d965f7c71
More useless cat
2015-03-13 15:19:47 -05:00
Mark Felder
7babe7478d
Remove 2>&1 for the ps $pid lines; it's unnecessary
2015-03-13 15:16:21 -05:00
Mark Felder
c83e1b98e2
Merge branch 'master' of github.com:feld/testssl.sh
2015-03-13 15:12:45 -05:00
Mark Felder
8ad1cca0ab
Remove useless kittens
2015-03-13 15:10:36 -05:00
Mark Felder
4cdc89aa61
Revert to 2>&1 > /dev/null order because it isn't behaving correctly.
2015-03-13 14:56:30 -05:00
Mark Felder
59ed025f36
Replace expr with $(( ))
...
https://github.com/koalaman/shellcheck/wiki/SC2003
2015-03-13 14:54:36 -05:00
Mark Felder
73202da2fd
Fix missing single quote
2015-03-13 14:26:02 -05:00
Mark Felder
b7b88a03e7
Fix order of the redirect
...
https://github.com/koalaman/shellcheck/wiki/SC2069
2015-03-13 10:00:14 -05:00
Mark Felder
305fcca2ae
Replace backticks with $(..)
...
https://github.com/koalaman/shellcheck/wiki/SC2006
2015-03-13 09:52:39 -05:00
Dirk
b5a568da62
- @feld
2015-03-13 12:21:06 +01:00
Dirk
c1ca5a641b
- FIX garbled output for servers with a TLS reply on SSLv2 socket call
2015-03-13 12:20:19 +01:00
Dirk Wetter
74d984cebc
Merge pull request #72 from feld/feld
...
Minor optimizations to reduce unnecessary forking
2015-03-13 11:00:52 +01:00
Mark Felder
f037a3f811
Minor optimizations to redunce unnecessary forking
2015-03-11 12:13:38 -05:00