Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-04-13 04:56:05 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • fccc24e232 - VERBOSE -eq 1 is now DEBUG -eq 2 (VERBOSE completely removed) - DEBUG has now four modes 1: just keep files 2: VERBOSE -eq 1 3: head hexdumps and other stuff, 4: full debugging - env and internal stuff $TEMPDIR Dirk 2015-01-21 12:53:00 +01:00
  • 6c6511ddb2 - VERBOSE -eq 1 is now DEBUG -eq 2 (VERBOSE completely removed) - DEBUG has now four modes 1: just keep files 2: VERBOSE -eq 1 3: head hexdumps and other stuff, 4: full debugging - env and internal stuff $TEMPDIR Dirk 2015-01-21 12:53:00 +01:00
  • a07fd55bb1 Update Readme.md Dirk Wetter 2015-01-20 22:13:15 +01:00
  • d825bd85f7 Update Readme.md Dirk Wetter 2015-01-20 22:13:15 +01:00
  • d9075f198a Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-01-20 22:10:22 +01:00
  • 82764845f2 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2015-01-20 22:10:22 +01:00
  • f0bd69ca40 - BEAST finally works - handling of spaces in output - different ciphers - FIX: setopt also for RC4 (proper handling of ret value) Dirk 2015-01-20 21:59:21 +01:00
  • d5924eedc4 - BEAST finally works - handling of spaces in output - different ciphers - FIX: setopt also for RC4 (proper handling of ret value) Dirk 2015-01-20 21:59:21 +01:00
  • 10ea361b9c first prototype BEAST | FIX: maketempf in initialize_engine | FIX: exit statements in main w/ more meaning/shorter Dirk 2015-01-20 21:51:49 +01:00
  • 28330dc6fc first prototype BEAST | FIX: maketempf in initialize_engine | FIX: exit statements in main w/ more meaning/shorter Dirk 2015-01-20 21:51:49 +01:00
  • c280d9a528 Update Readme.md Dirk Wetter 2015-01-16 17:18:38 +01:00
  • 1032c3756a Update Readme.md Dirk Wetter 2015-01-16 17:18:38 +01:00
  • cc9046064c Update Readme.md Dirk Wetter 2015-01-16 17:16:22 +01:00
  • b0c6062cb7 Update Readme.md Dirk Wetter 2015-01-16 17:16:22 +01:00
  • d129531371 fine tuning on banner Dirk 2015-01-15 20:29:46 +01:00
  • 5853202efd fine tuning on banner Dirk 2015-01-15 20:29:46 +01:00
  • 4c72e059b8 - FIX: grep -a if we hit binary content with http_header (also if otherwise specified) - NEW: can specify URL (used for header matters and breach) - FIX: better handling of >1 cookies Dirk 2015-01-14 12:23:53 +01:00
  • 4c6f0d9a50 - FIX: grep -a if we hit binary content with http_header (also if otherwise specified) - NEW: can specify URL (used for header matters and breach) - FIX: better handling of >1 cookies Dirk 2015-01-14 12:23:53 +01:00
  • 549d523728 * NEW: cookie flags (experimental) [URL is missing] * FIX: 30x handling for http_header (hint for final URL if stalled) * FIX: proper display of app-banners if >1 Dirk 2015-01-14 09:48:44 +01:00
  • 3d81a7b5ec * NEW: cookie flags (experimental) [URL is missing] * FIX: 30x handling for http_header (hint for final URL if stalled) * FIX: proper display of app-banners if >1 Dirk 2015-01-14 09:48:44 +01:00
  • 400f06b64f SNI is not anymore 2do (removed misleading comment) Dirk 2015-01-12 23:28:38 +01:00
  • 44d8f67998 SNI is not anymore 2do (removed misleading comment) Dirk 2015-01-12 23:28:38 +01:00
  • c8e4db1a39 debugging more fine grained Dirk 2015-01-12 23:15:26 +01:00
  • 84204a80a3 debugging more fine grained Dirk 2015-01-12 23:15:26 +01:00
  • 16c14de324 now with SNI! Dirk 2015-01-12 22:56:15 +01:00
  • ac6a67a299 now with SNI! Dirk 2015-01-12 22:56:15 +01:00
  • d5ed01a3ab now checker fo SSLv3 to TLSV1.2 (SNI missing for now) Dirk 2015-01-10 22:08:11 +01:00
  • f0747dd2fc now checker fo SSLv3 to TLSV1.2 (SNI missing for now) Dirk 2015-01-10 22:08:11 +01:00
  • 0fd4e06f21 typo in tempdir led to missing gost cipher Dirk 2015-01-08 14:16:22 +01:00
  • cedeff2b42 typo in tempdir led to missing gost cipher Dirk 2015-01-08 14:16:22 +01:00
  • bcda178bd7 working prototype for SSLv2 client hello + parsing server hello in bash Dirk 2015-01-07 23:57:16 +01:00
  • 446f7bf152 working prototype for SSLv2 client hello + parsing server hello in bash Dirk 2015-01-07 23:57:16 +01:00
  • 64cafd40f0 Merge branch 'master' of https://github.com/drwetter/testssl.sh Dirk 2015-01-07 23:30:24 +01:00
  • 62f20a6cd2 Merge branch 'master' of https://github.com/drwetter/testssl.sh Dirk 2015-01-07 23:30:24 +01:00
  • c01ec13e2e - moved utils to separate dir Dirk 2015-01-07 23:29:05 +01:00
  • 5044412f39 - moved utils to separate dir Dirk 2015-01-07 23:29:05 +01:00
  • 1ad9251e5e safer batch processing if port isn't available Dirk 2015-01-07 23:16:45 +01:00
  • decade9986 safer batch processing if port isn't available Dirk 2015-01-07 23:16:45 +01:00
  • 37fea08022 Merge remote-tracking branch 'origin/revert-48-master' Dirk 2015-01-07 23:09:57 +01:00
  • aa546b520e Merge remote-tracking branch 'origin/revert-48-master' Dirk 2015-01-07 23:09:57 +01:00
  • b78362e41f safer bacth processing if port isn't available Dirk 2015-01-06 16:25:19 +01:00
  • 8a3e0267ba safer bacth processing if port isn't available Dirk 2015-01-06 16:25:19 +01:00
  • afa5669c89 Revert "Change question logic on non-SSL port" Dirk Wetter 2015-01-06 16:10:21 +01:00
  • 2556377398 Revert "Change question logic on non-SSL port" Dirk Wetter 2015-01-06 16:10:21 +01:00
  • d7d884c16e Merge pull request #48 from lwindolf/master Dirk Wetter 2015-01-06 16:01:07 +01:00
  • e816e4877a Merge pull request #48 from lwindolf/master Dirk Wetter 2015-01-06 16:01:07 +01:00
  • 21db6b4eba Change question logic on non-SSL port Lars Windolf 2015-01-03 11:41:35 +01:00
  • d1ab23c146 Change question logic on non-SSL port Lars Windolf 2015-01-03 11:41:35 +01:00
  • c48944c5fb - check for CN wrt SNI / no SNI - fix different responses for CACert Dirk 2014-12-23 09:59:03 +01:00
  • eae1b2810f - check for CN wrt SNI / no SNI - fix different responses for CACert Dirk 2014-12-23 09:59:03 +01:00
  • a8ef2dfa42 - Negotiated cipher per proto - nr_ciphers of used openssl version in banner - spdy_pre check - -testversion_new --> -testversion Dirk 2014-12-21 23:22:50 +01:00
  • 4aa674d138 - Negotiated cipher per proto - nr_ciphers of used openssl version in banner - spdy_pre check - -testversion_new --> -testversion Dirk 2014-12-21 23:22:50 +01:00
  • 496cf11774 - Cipher order check! (also for starttls) - includes a remark 4 default_cipher (limited sense as client will pick) - selfsigned certs: error! - number of local ciphers in check with allciphers Dirk 2014-12-21 00:47:23 +01:00
  • a570d907e9 - Cipher order check! (also for starttls) - includes a remark 4 default_cipher (limited sense as client will pick) - selfsigned certs: error! - number of local ciphers in check with allciphers Dirk 2014-12-21 00:47:23 +01:00
  • f2ce663f4e Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2014-12-19 17:06:37 +01:00
  • 04b6795f94 Merge branch 'master' of github.com:drwetter/testssl.sh Dirk 2014-12-19 17:06:37 +01:00
  • 95f9e844c0 - tempfile handling: every function leaves one, if DEBUG is set - FIX*2: OPENSSL_CONF/GOST_CONF Dirk 2014-12-19 17:02:26 +01:00
  • 21493fb788 - tempfile handling: every function leaves one, if DEBUG is set - FIX*2: OPENSSL_CONF/GOST_CONF Dirk 2014-12-19 17:02:26 +01:00
  • 70f0e3e4a4 Update Readme.md Dirk Wetter 2014-12-19 15:52:05 +01:00
  • 9e53070598 Update Readme.md Dirk Wetter 2014-12-19 15:52:05 +01:00
  • 8eace3988c Update Readme.md Dirk Wetter 2014-12-19 15:51:32 +01:00
  • c2ef5d1da8 Update Readme.md Dirk Wetter 2014-12-19 15:51:32 +01:00
  • 1a699c7bbf - subjectAltName Dirk 2014-12-19 07:12:20 +01:00
  • 8635012cf5 - subjectAltName Dirk 2014-12-19 07:12:20 +01:00
  • 61c3541f8d - NEW: certificate info, details: - NEW: CN, SAN - NEW: OCSP URI - NEW: CRL distr point - NEW: Issuer - NEW: expiration - NEW: signature algo - renamed cmdline --simple_preference to --server_defaults - now we have a TEMPDIR where all files are written toA - function or handling/removing TMPFILE Dirk 2014-12-18 09:33:24 +01:00
  • 521a7160a9 - NEW: certificate info, details: - NEW: CN, SAN - NEW: OCSP URI - NEW: CRL distr point - NEW: Issuer - NEW: expiration - NEW: signature algo - renamed cmdline --simple_preference to --server_defaults - now we have a TEMPDIR where all files are written toA - function or handling/removing TMPFILE Dirk 2014-12-18 09:33:24 +01:00
  • 489fbfce9e Update Readme.md Dirk Wetter 2014-12-09 14:25:38 +01:00
  • 5d66eeef05 Update Readme.md Dirk Wetter 2014-12-09 14:25:38 +01:00
  • 8dd2425ada - RELEASE: final 2.2 - change of cmd line order for STARTTLS - help more clear Dirk 2014-12-08 10:32:51 +01:00
  • b40c0b7178 - RELEASE: final 2.2 - change of cmd line order for STARTTLS - help more clear Dirk 2014-12-08 10:32:51 +01:00
  • 05d7047865 - BUGFIX: potential stalling in HTTP Header query - BUGFIX: HTTP specific vuln. won't be checked if service is not http (we still check crime and also spdy => gmail has spdy for pop and imap) - Feature: service detection: HTTP, IMAP, POP, SMTP - alignment in rDNS output corrected - minor cleanup / improvements Dirk 2014-11-30 01:30:20 +01:00
  • b3efb3c4b0 - BUGFIX: potential stalling in HTTP Header query - BUGFIX: HTTP specific vuln. won't be checked if service is not http (we still check crime and also spdy => gmail has spdy for pop and imap) - Feature: service detection: HTTP, IMAP, POP, SMTP - alignment in rDNS output corrected - minor cleanup / improvements Dirk 2014-11-30 01:30:20 +01:00
  • e2067d1663 - BUGFIX: BSD now has proper heartbleed and ccs injection detection - significant code improvement of hex-byte parser <-> socket sender - BUGFIX: BSD now doesn't put an extra \n if rfc map file is missing - bumped to 2.1rc3, hoping that'll be the last Dirk 2014-11-27 21:33:33 +01:00
  • 27f06f8d50 - BUGFIX: BSD now has proper heartbleed and ccs injection detection - significant code improvement of hex-byte parser <-> socket sender - BUGFIX: BSD now doesn't put an extra \n if rfc map file is missing - bumped to 2.1rc3, hoping that'll be the last Dirk 2014-11-27 21:33:33 +01:00
  • ba76dad503 - for colors: double square brackets (might save a fork to "[ or "test" - in terms of debugging cleaned up listciphers/std_cipherlists - in other terms too Dirk 2014-11-25 13:12:24 +01:00
  • c034cd8a95 - for colors: double square brackets (might save a fork to "[ or "test" - in terms of debugging cleaned up listciphers/std_cipherlists - in other terms too Dirk 2014-11-25 13:12:24 +01:00
  • d948039237 Update Readme.md Dirk Wetter 2014-11-24 16:43:11 +01:00
  • 5228986b25 Update Readme.md Dirk Wetter 2014-11-24 16:43:11 +01:00
  • 18cd3a7a21 Merge pull request #37 from yurivict/master Dirk Wetter 2014-11-24 15:16:42 +01:00
  • b242876597 Merge pull request #37 from yurivict/master Dirk Wetter 2014-11-24 15:16:42 +01:00
  • 6829de54c5 Fixed the problem when COLOR=0 caused 'printf' to break due to leading dashes interpreted as command line options. Yuri 2014-11-22 12:15:47 -08:00
  • 19f936bece Fixed the problem when COLOR=0 caused 'printf' to break due to leading dashes interpreted as command line options. Yuri 2014-11-22 12:15:47 -08:00
  • 7649b20a0d Merge pull request #36 from PeterMosmans/bugfix Dirk Wetter 2014-11-22 18:31:09 +01:00
  • 7cf2030c20 Merge pull request #36 from PeterMosmans/bugfix Dirk Wetter 2014-11-22 18:31:09 +01:00
  • 1a3bebeed8 Fixed minor redirection typo for 'which' command Peter Mosmans 2014-11-22 12:57:36 +10:00
  • c3ab016164 Fixed minor redirection typo for 'which' command Peter Mosmans 2014-11-22 12:57:36 +10:00
  • 00ff1b57a0 - increase first read buffer -- otherwise it's how up at hb reply and lead to false positives Dirk 2014-11-20 18:55:51 +01:00
  • 4c3cc0df8e - increase first read buffer -- otherwise it's how up at hb reply and lead to false positives Dirk 2014-11-20 18:55:51 +01:00
  • 80079edf41 color codes for protocols and default ciphers reflect better a rating - fix: heartbleed function needed a $TMPFILE for determining the TLS protocol - version bumped to 2.1rc2 Dirk 2014-11-20 10:46:55 +01:00
  • d4265742b1 color codes for protocols and default ciphers reflect better a rating - fix: heartbleed function needed a $TMPFILE for determining the TLS protocol - version bumped to 2.1rc2 Dirk 2014-11-20 10:46:55 +01:00
  • db17669b99 - fix in cleanup (while debug) - wrong cmd line option --> help instread of error Dirk 2014-11-19 22:23:13 +01:00
  • 5dd4a8f3fa - fix in cleanup (while debug) - wrong cmd line option --> help instread of error Dirk 2014-11-19 22:23:13 +01:00
  • 9d5d77c813 - protocol check stream lined: similar now for every protocol - NPN/SPDY is not green anymore Dirk 2014-11-19 18:04:43 +01:00
  • 05877dca93 - protocol check stream lined: similar now for every protocol - NPN/SPDY is not green anymore Dirk 2014-11-19 18:04:43 +01:00
  • ab7074aefd - protocol w/o cipher (only SSLv2 so far) - for EVERY protocol now check whether $openssl supports it - better fail for PFS if there are no local ciphers Dirk 2014-11-19 17:08:59 +01:00
  • d77b667489 - protocol w/o cipher (only SSLv2 so far) - for EVERY protocol now check whether $openssl supports it - better fail for PFS if there are no local ciphers Dirk 2014-11-19 17:08:59 +01:00
  • 9fe6b9a917 @oparoz Dirk 2014-11-19 13:26:48 +01:00
  • 52ef1fe684 @oparoz Dirk 2014-11-19 13:26:48 +01:00
  • 93c05e9d12 - banner (opensssl version build date, platform) slightly changed - even clearer warning upon old openssl version (MacOSX!) - oparoz hexdump patch - heartbleed doenst do a precheck anymore --> just sockets as it may lead to false negatives if the client was complied with it disabled (FreeBSD) Dirk 2014-11-19 13:22:22 +01:00
  • 99e472ac01 - banner (opensssl version build date, platform) slightly changed - even clearer warning upon old openssl version (MacOSX!) - oparoz hexdump patch - heartbleed doenst do a precheck anymore --> just sockets as it may lead to false negatives if the client was complied with it disabled (FreeBSD) Dirk 2014-11-19 13:22:22 +01:00