pysslscan
pysslscan copied to clipboard
DinoTools
Framework and command-line tool to scan SSL enabled services
Hi, can you please provide an python API example? Given a set of IPs, Port numbers I'd like to pull the supported cypher suites for each running service. Thanks!
Python 3.7.1, Mac OSX 10.13.6: `username$ pysslscan scan --scan=protocol.http --tls10 --tls11 --tls12 https://example123.com Traceback (most recent call last): File "/Users/username/anaconda3/bin/pysslscan", line 10, in sys.exit(run()) File "/Users/username/anaconda3/lib/python3.7/site-packages/sslscan/ui.py", line 560, in run...
Previously, using `--scan=server.scsv` caused pysslscan to abort. This commit should fix the issues with SCSV detection.
This adds detection for client-initiated renegotiation to the renegotiation module. For its limitations see https://github.com/DinoTools/python-flextls/issues/16 and `server_renegotiation.py`.
3DES is currently reported with 168 bits because of its key size, but the security level is only 112 bits: https://www.ietf.org/rfc/rfc2246.txt (page 57) - IMHO it would be better to...
The ServerKeyExchange message contains details about the DH parameters. It should be checked that it is complex enough.