TLS-Scanner
TLS-Scanner copied to clipboard
tls-attacker
The TLS-Scanner Module from TLS-Attacker
Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.13.2.1 to 2.13.4.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Hello! In the report there is a list of supported SignatureAndHash algorithms. This summarizes the algorithms used for signing during the handshake and for the signature of the certificate used....
`java -jar apps/TLS-Server-Scanner.jar -connect test.de:443 -reportDetail ALL` ``` ----|Passed Checks: Grundsätzlich werden TLS 1.2 und TLS 1.3 empfohlen. SUPPORTS_TLS_1_2=TRUE Grundsätzlich werden TLS 1.2 und TLS 1.3 empfohlen. SUPPORTS_TLS_1_3=TRUE TLS 1.0...
As seen in #83, header matching is case-sensitive, but need to be lowercase for HTTP/2 - or maybe should be case insensitive in general. This issue should be reviewed /...
Most workflows in the Scanner do not expect the Server to respond with a CertificateRequest message, which can cause the WorkflowTraces to not execute as expected. If this is the...
Some older Apache versions (like 2.4.6 in RHEL / CentOS 7) don't support a limited lifetime for session tickets. This could undermine the forward secrecy for long running processes if...
