cryptonice
cryptonice copied to clipboard
F5-Labs
CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the ssly...
Getting this error after installation. Double checked the dependencies and cannot see anything missing. File "/Library/Frameworks/Python.framework/Versions/3.8/bin/cryptonice", line 5, in from cryptonice.__main__ import main File "/Library/Frameworks/Python.framework/Versions/3.8/lib/python3.8/site-packages/cryptonice/__main__.py", line 1, in from cryptonice.scanner...
For example **buzzfeed.com** `cryptonice buzzfeed.com --scans tls dns http jarm --tls all` ``` Traceback (most recent call last): File "/var/task/lambda_function.py", line 55, in lambda_handler output_data, hostname = scanner.scanner_driver(input_data) File "/opt/python/lib/python3.7/site-packages/cryptonice-1.3.7.1-py3.7.egg/cryptonice/scanner.py",...
Some scans which result in intermittent errors produce output in the JSON which is unserializable. e.g. `'commands_with_errors': {'tls_1_3_early_data': }},`
Hello, I use cryptonice often to verify if my internet facing endpoints are configured properly. This configuration is done in K8s or on a cloud platform such as Azure with...
Adding the ability to display the certificate issuer name appears trivial, and the data winds up in the JSON as well. [https://github.com/F5-Labs/cryptonice/pull/14](https://github.com/F5-Labs/cryptonice/pull/14 )
The two mentioned sites don't cause any errors to be generated (in cryptonice nor in sslyze). Not sure what the issue here is, so I'm not sure how to catch...
cryptonice should produce recommendations based on vulnerabilities, weaknesses and missing features (e.g. DNS CAA not configured). An easy option would be to simply output during the console output (in scanner.py),...
A number of sites redirect from HTTP to HTTPS but this is not detected within cryptonice.