Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2024-12-31 22:09:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 0e36255fb9 Added a check for TLS_FALLBACK_SCSV JonnyHightower 2015-06-08 17:19:34 +0100
  • 0f5c4981cb - more or less desperate try to figure out the real installation path (and find the mapping file) - help extended (equal sign, logjam) Dirk 2015-06-02 22:13:19 +0200
  • 312b02ac63 Merge pull request #117 from teward/patch-1 Dirk Wetter 2015-06-02 18:09:19 +0200
  • 266874daeb Expand the OpenSSL 1.0.2 reqs/benefits. #117 Thomas Ward 2015-06-02 11:59:17 -0400
  • 03d8ba9b81 Update OpenSSL reqs - LOGJAM checks need 1.0.2+ Thomas Ward 2015-06-02 11:57:11 -0400
  • 4081b2eef4 - wrong arg for dirname ($1) Dirk 2015-06-02 15:59:17 +0200
  • 06c3b06a7a - regression fix on mapping file Dirk 2015-06-02 15:53:46 +0200
  • 32acfa97a5 Merge pull request #115 from PeterMosmans/space Dirk Wetter 2015-06-02 09:26:25 +0200
  • 8e4970c408 Minor textual fix (added space) #115 Peter Mosmans 2015-06-01 14:16:31 +0200
  • cac985967f - first prototype for using = in cmdline, see #108. Tests needed - beautified big case loop Dirk 2015-06-01 12:01:38 +0200
  • 452fd6762a - local dns matches don't need lookup anymore over net --> saves timeouts+time - further banner tuning + funtion mybanner, 2 addtl global vars for debugging - cosmetic improvements Dirk 2015-05-31 14:40:12 +0200
  • 77ad7c9252 - the outsticking part was kind of not handy, see #113, remove commit message Dirk 2015-05-30 11:36:47 +0200
  • 353b58c0c0 Merge pull request #113 from PeterMosmans/showversion Dirk Wetter 2015-05-30 11:16:31 +0200
  • 764f20dbcf FIX: Show version when specified on command line #113 Peter Mosmans 2015-05-30 11:13:57 +0200
  • d0f6ea525a Merge eb3227c837 into d066e0868a #111 Peter Mosmans 2015-05-30 09:04:08 +0000
  • d066e0868a Merge pull request #112 from AntonioMeireles/cosmetics_1 Dirk Wetter 2015-05-29 22:42:51 +0200
  • faa9c49a2b fix spelling typos. #112 António Meireles 2015-05-29 18:56:57 +0100
  • 4064332234 trim all whitespace at EOL. António Meireles 2015-05-29 18:44:27 +0100
  • 9b2b897a43 - make date even more beautiful, see #110 - fix RUN_DIR Dirk 2015-05-29 14:12:22 +0200
  • df3b9019a1 Update Readme.md Dirk Wetter 2015-05-29 13:37:37 +0200
  • e14453b607 Merge pull request #110 from AntonioMeireles/master Dirk Wetter 2015-05-29 11:01:47 +0200
  • 4e18c35271 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-29 10:36:47 +0200
  • 41ee37f0dc - per default we do a allciphers run in the end - option long changed to wide - PFS now is per default not wide - PFS comes after standard cipher lists - debug output improved (in terms of privacy and additional info) Dirk 2015-05-29 10:36:14 +0200
  • b48ac9874e - early check to make sure people really use bash, see #109 Dirk 2015-05-29 10:10:53 +0200
  • 2ac34c1424 - early check to make sure people really use bash, see #109 Dirk 2015-05-29 10:08:17 +0200
  • eb3227c837 FIX: show banner when specifying banner option #111 Peter Mosmans 2015-05-29 09:17:56 +0200
  • c923baaecd Merge remote-tracking branch 'upstream/master' Peter Mosmans 2015-05-29 08:39:50 +0200
  • 4063e38ccf simplify life for OSX users running gnu's coreutils... #110 António Meireles 2015-05-28 16:51:33 +0100
  • 8b10dc9638 - code improvements rc4, beast, logjam, freak Dirk Wetter 2015-05-27 23:31:25 +0200
  • f9605c4f35 - BEAST now also works in wide mode - renamed --long in --wide - added --show-each to help - inserted help Dirk Wetter 2015-05-27 17:04:35 +0200
  • 4cb8cf2ff4 - first candidate for logjam (missing the precomuted primes though) - 1024 DH is now brown instead of red, 768 will be red, 512 bold red - dumped calls to ok() - further cosmetic stuff 2.4 Dirk Wetter 2015-05-27 14:28:18 +0200
  • a76ca52c4c - first candidate for logjam (missing the precomuted primes though) - 1024 DH is now brown instead of red, 768 will be red, 512 bold red - dumped calls to ok() - further cosmetic stuff Dirk Wetter 2015-05-27 14:28:18 +0200
  • 83e9c55785 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-27 11:24:47 +0200
  • f261884499 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-27 11:24:47 +0200
  • eedc9d6f38 - fix regression on missing rfc cipher names - cosmetic stuff Dirk 2015-05-27 11:19:30 +0200
  • ed38a365ae - fix regression on missing rfc cipher names - cosmetic stuff Dirk 2015-05-27 11:19:30 +0200
  • 7fc7ab5ea6 - FIX: cipher mapping - adjust trailing spaces missing b4 Dirk Wetter 2015-05-26 19:26:21 +0200
  • efffe9867b - FIX: cipher mapping - adjust trailing spaces missing b4 Dirk Wetter 2015-05-26 19:26:21 +0200
  • ce8b44d7ff - typo/ c&p error with dh func - fixed uninitialised var Dirk Wetter 2015-05-26 15:59:27 +0200
  • c7a76d9b86 - typo/ c&p error with dh func - fixed uninitialised var Dirk Wetter 2015-05-26 15:59:27 +0200
  • 8c900725da - logjam Dirk 2015-05-26 12:57:15 +0200
  • d58f39d008 - logjam Dirk 2015-05-26 12:57:15 +0200
  • 63542251c8 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-26 12:56:17 +0200
  • 8ab0aef84b Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-26 12:56:17 +0200
  • f8935bd507 - for pfs. allciphers and cipher_per_proto we WARN now because of weak DH param (if openssl supports it) FIX #106, $85 - logjam not yet named *#105, #107) but addressed - --openssl switch - reorder find_openssl_binary / mybanner - proper identation of help Dirk 2015-05-26 12:51:10 +0200
  • 060178071d - for pfs. allciphers and cipher_per_proto we WARN now because of weak DH param (if openssl supports it) FIX #106, $85 - logjam not yet named *#105, #107) but addressed - --openssl switch - reorder find_openssl_binary / mybanner - proper identation of help Dirk 2015-05-26 12:51:10 +0200
  • 361d5ec1c9 Update Readme.md Dirk Wetter 2015-05-25 21:41:45 +0200
  • 9b13160953 Update Readme.md Dirk Wetter 2015-05-25 21:41:45 +0200
  • 18d7fd647f - blanks in headlines added Dirk 2015-05-25 21:22:21 +0200
  • 3c161f9ce4 - blanks in headlines added Dirk 2015-05-25 21:22:21 +0200
  • acdfdb0533 - omit 1xblank in almost all colored output (and adjust the functions using it) - little bit more robust for strange keysize and dh bits - added ecdsa-with-SHA256 to Signature Algorithm - FIX: no TLS1+SSL3 resulted in no output for BEAST Dirk 2015-05-25 21:14:59 +0200
  • 9c7d385098 - omit 1xblank in almost all colored output (and adjust the functions using it) - little bit more robust for strange keysize and dh bits - added ecdsa-with-SHA256 to Signature Algorithm - FIX: no TLS1+SSL3 resulted in no output for BEAST Dirk 2015-05-25 21:14:59 +0200
  • 8a458d6ab4 - dh key lenghth in negotiated cipher at first, see $85, #105, #106 - got rid of ok function calls in protocols - detection of apache banner win32/win64 Dirk 2015-05-25 15:10:09 +0200
  • e58b53eeae - dh key lenghth in negotiated cipher at first, see $85, #105, #106 - got rid of ok function calls in protocols - detection of apache banner win32/win64 Dirk 2015-05-25 15:10:09 +0200
  • 4febd95b64 - FIX for #104: check for hpkp pin match failed if \" was present Dirk 2015-05-18 23:10:34 +0200
  • a7a19428d6 - FIX for #104: check for hpkp pin match failed if \" was present Dirk 2015-05-18 23:10:34 +0200
  • 308c738b75 - NEW / FIX #104: check for hpkp pin match Dirk 2015-05-18 21:51:45 +0200
  • 0c4a36121e - NEW / FIX #104: check for hpkp pin match Dirk 2015-05-18 21:51:45 +0200
  • 2e36c9de45 Update Readme.md Dirk Wetter 2015-05-17 22:56:38 +0200
  • bf7b867d86 Update Readme.md Dirk Wetter 2015-05-17 22:56:38 +0200
  • 68cb80a72d - 2.4 Dirk 2015-05-17 22:43:53 +0200
  • 7cc15e5d4d - 2.4 v2.4 Dirk 2015-05-17 22:43:53 +0200
  • 5ec79b0204 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-17 22:42:53 +0200
  • 43732ae53d Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-17 22:42:53 +0200
  • ade08a22b8 - 2.4 Dirk 2015-05-17 22:34:50 +0200
  • 4e7bbb20a0 - 2.4 Dirk 2015-05-17 22:34:50 +0200
  • 42b2303f6b Dirk 2015-05-17 22:34:50 +0200
  • 1c509bf845 Dirk 2015-05-17 22:34:50 +0200
  • 5ba29902ff - 2.4! - FIX #92 - FIX for TLS time (difftime was too small for local clock skew) - warning for freebsd/macosx w/o ports need now a "yes" - TLS 1.0 not offered is not bold anymore - output weirdness fixed for cipher order in spdy Dirk 2015-05-17 22:30:49 +0200
  • 2919a7c40e - 2.4! - FIX #92 - FIX for TLS time (difftime was too small for local clock skew) - warning for freebsd/macosx w/o ports need now a "yes" - TLS 1.0 not offered is not bold anymore - output weirdness fixed for cipher order in spdy Dirk 2015-05-17 22:30:49 +0200
  • 8e7207325d - FIX of output whene there's no CBC cipher in BEAST - FIX: 2 occurrances of OPENSSL calls had a hostname instead of an IP address - FIX: starttls protocol correctly displayed - NEW added duplicate detection for header flags - NEW: added four GOST cipher to standard socket handshake - recommends if openssl 1.0.2 is used and results were strange and IIS6 --> run wqith openssl 1.0.1 - declared some global vars as readonly Dirk 2015-05-15 21:32:11 +0200
  • 6e74b3bd5c - FIX of output whene there's no CBC cipher in BEAST - FIX: 2 occurrances of OPENSSL calls had a hostname instead of an IP address - FIX: starttls protocol correctly displayed - NEW added duplicate detection for header flags - NEW: added four GOST cipher to standard socket handshake - recommends if openssl 1.0.2 is used and results were strange and IIS6 --> run wqith openssl 1.0.1 - declared some global vars as readonly Dirk 2015-05-15 21:32:11 +0200
  • 900d3d11e6 Update Readme.md Dirk Wetter 2015-05-12 13:42:42 +0200
  • 7741d99cc8 Update Readme.md Dirk Wetter 2015-05-12 13:42:42 +0200
  • d681871555 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-12 13:38:20 +0200
  • 7614ac6f87 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-05-12 13:38:20 +0200
  • f0f2119f42 - Workarounds for IIS6 #99 : some places where openssl 1.0.2 cannot connect (as opposed to =< 1.0.1) finding the right protocol before - hints for IIS6+openssl 1.0.2 non-conformity #99 - version bumped up to 2.4rc2 - better formatting for BSD in cipher order - FIX: 2x bug for cipher order + sslv2 - preambel revisited Dirk 2015-05-12 13:37:39 +0200
  • 16d2b33459 - Workarounds for IIS6 #99 : some places where openssl 1.0.2 cannot connect (as opposed to =< 1.0.1) finding the right protocol before - hints for IIS6+openssl 1.0.2 non-conformity #99 - version bumped up to 2.4rc2 - better formatting for BSD in cipher order - FIX: 2x bug for cipher order + sslv2 - preambel revisited Dirk 2015-05-12 13:37:39 +0200
  • 9de6cc9108 Update Readme.md Dirk Wetter 2015-05-12 10:21:31 +0200
  • a7d7158c4b Update Readme.md Dirk Wetter 2015-05-12 10:21:31 +0200
  • 6938f16923 - WONTFIX remarks for #103 and #102 - better warning for openssl < 1.0 Dirk 2015-05-11 16:58:57 +0200
  • 3a64bd1005 - WONTFIX remarks for #103 and #102 - better warning for openssl < 1.0 Dirk 2015-05-11 16:58:57 +0200
  • c1d6541d1a URL_PATH regression fixed Dirk 2015-05-11 10:47:26 +0200
  • 35d8469f67 URL_PATH regression fixed Dirk 2015-05-11 10:47:26 +0200
  • 8a039b8aa1 - two fixes from #40 reported by @salt-lick Dirk 2015-05-11 08:52:40 +0200
  • 08fe890d5f - two fixes from #40 reported by @salt-lick Dirk 2015-05-11 08:52:40 +0200
  • 64efb4be94 - FIX: 30x with BigIP doesn't have a date, handled properly now - generic GET/HEAD is now always with URL_PATH Dirk 2015-05-10 23:38:06 +0200
  • 19fc021587 - FIX: 30x with BigIP doesn't have a date, handled properly now - generic GET/HEAD is now always with URL_PATH Dirk 2015-05-10 23:38:06 +0200
  • f0c1548c37 - informative header extended Dirk 2015-05-10 20:54:43 +0200
  • 0050df5529 - informative header extended Dirk 2015-05-10 20:54:43 +0200
  • 26b4a53884 - NUMEROUS FreeBSD9/Darwin FIXES #40 - http date - cipher list in preferences - GET_REQ11 now closes the connection - openssl_age comes afeter the banner so that help doesn't need to go thru this - uname -s ==> SYSTEM Dirk 2015-05-10 19:20:55 +0200
  • 2f79ba52fc - NUMEROUS FreeBSD9/Darwin FIXES #40 - http date - cipher list in preferences - GET_REQ11 now closes the connection - openssl_age comes afeter the banner so that help doesn't need to go thru this - uname -s ==> SYSTEM Dirk 2015-05-10 19:20:55 +0200
  • 7e1ffa2fb5 - more robust wrt IIS6 (some stuff better with IIS7) - X-Powered-By is easy to remove (PHP, ASP.NET), thus labelled as yellow - same X-AspNet-Version (version # itself is brown) - better addressed address resolution failures ;-) - bumped up version to 2.4rc1 Dirk 2015-05-06 18:48:51 +0200
  • 0aa8ac7e76 - more robust wrt IIS6 (some stuff better with IIS7) - X-Powered-By is easy to remove (PHP, ASP.NET), thus labelled as yellow - same X-AspNet-Version (version # itself is brown) - better addressed address resolution failures ;-) - bumped up version to 2.4rc1 Dirk 2015-05-06 18:48:51 +0200
  • 9a3c4bc4b9 - FIX $87 (2), finally - feature: integrated TLS+HTTP time into server defaults - NEW: option: -U/vulnerable - moved explanation for BREACH into result - FREAK and CCS are not labled experimental anymore - unifying of get request headers - readability of help Dirk 2015-05-02 15:01:02 +0200
  • f3f3967bd1 - FIX $87 (2), finally - feature: integrated TLS+HTTP time into server defaults - NEW: option: -U/vulnerable - moved explanation for BREACH into result - FREAK and CCS are not labled experimental anymore - unifying of get request headers - readability of help Dirk 2015-05-02 15:01:02 +0200
  • 31e781d229 - partly FIX for #87 (removed SNI helps. Doesn't make sense anyway) - changed order of Secure Renegotiation/Secure Client-Initiated Renegotiation - readability improvements in renego Dirk Wetter 2015-05-01 12:18:43 +0200
  • 2aa82e5164 - partly FIX for #87 (removed SNI helps. Doesn't make sense anyway) - changed order of Secure Renegotiation/Secure Client-Initiated Renegotiation - readability improvements in renego Dirk Wetter 2015-05-01 12:18:43 +0200
  • 254cb24a64 - fix additional \n in RC4 if no RC4 ciphers were detected Dirk 2015-04-28 08:04:09 +0200
  • d766a0b459 - fix additional \n in RC4 if no RC4 ciphers were detected Dirk 2015-04-28 08:04:09 +0200