TLSSLed包装说明
TLSSLed是Linux外壳脚本,其目的是评价目标SSL / TLS(HTTPS)web服务器执行的安全性。它是基于sslscan,彻底SSL / TLS的扫描器,它基于OpenSSL库,并在“OpenSSL的s_client”的命令行工具。当前测试包括检查所述目标支持的SSLv2协议,空密码中,弱密码基于其密钥长度(40或56位),强密码(如AES)的可用性,如果数字证书的MD5签名,和当前的SSL / TLS的重新协商能力。
资料来源:http://www.taddong.com/en/lab.html
TLSSLed首页 | 卡利TLSSLed回购
- 作者:劳尔·西莱斯,Taddong SL
- 许可:GPLv3的
包含在tlssled包工具
tlssled - 计算一个目标SSL / TLS(HTTPS)服务器的安全
[email protected]:~# tlssled
------------------------------------------------------
TLSSLed - (1.3) based on sslscan and openssl
by Raul Siles (www.taddong.com)
------------------------------------------------------
openssl version: OpenSSL 1.0.1e 11 Feb 2013
sslscan version 1.8.2
------------------------------------------------------
Date: 20140520-110731
------------------------------------------------------
[!] Usage: /usr/bin/tlssled <hostname or IP_address> <port>TLSSLed用法示例
检查SSL / TLS的主机(192.168.1.1)和端口(443)上:
[email protected]:~# tlssled 192.168.1.1 443
------------------------------------------------------
TLSSLed - (1.3) based on sslscan and openssl
by Raul Siles (www.taddong.com)
------------------------------------------------------
openssl version: OpenSSL 1.0.1e 11 Feb 2013
sslscan version 1.8.2
------------------------------------------------------
Date: 20140513-165131
------------------------------------------------------
[*] Analyzing SSL/TLS on 192.168.1.1:443 ...
[.] Output directory: TLSSLed_1.3_192.168.1.1_443_20140513-165131 ...
[*] Checking if the target service speaks SSL/TLS...
[.] The target service 192.168.1.1:443 seems to speak SSL/TLS...
[.] Using SSL/TLS protocol version:
(empty means I'm using the default openssl protocol version(s))
[*] Running sslscan on 192.168.1.1:443 ...
[-] Testing for SSLv2 ...
[-] Testing for the NULL cipher ...