sslscan – Detect SSL Versions & Cipher Suites (Including TLS)

Outsmart Malicious Hackers


sslscan is a very efficient C program that allows you to detect SSL versions & cipher suites (including TLS) and also checks for vulnerabilities like Heartbleed and POODLE.

sslscan - Detect SSL Versions & Cipher Suites (Including TLS)

A useful tool to keep around after you’ve set-up a server to check the SSL configuration is robust. Especially if you’re in an Internet limited environment and you can’t use an Online tool like the excellent Qualsys SSL Labs – https://www.ssllabs.com/ssltest/

Features

sslscan has fairly complete support to detect all versions and ciphers for both SSL and TLS, including vulnerabilities (like Heartbleed and Poodle).

  • Highlight SSLv2 and SSLv3 ciphers in output.
  • Highlight CBC ciphers on SSLv3 (POODLE).
  • Highlight 3DES and RC4 ciphers in output.
  • Highlight PFS+GCM ciphers as good in output.
  • Check for OpenSSL HeartBleed (CVE-2014-0160).
  • Flag expired certificates.
  • Flag weak DHE keys with OpenSSL >= 1.0.2.
  • Experimental Windows & OS X support.
  • Support for scanning PostgreSQL servers.
  • StartTLS support for LDAP.

Usage

You can download sslscan here:

sslscan-1.11.0-rbsec.tar.gz

Or read more here.


Posted in: Cryptography, Hacking Tools, Network Hacking

, , , , , , , , , , , ,

Recent in Cryptography:
- hashID – Identify Different Types of Hashes
- China To Outlaw All Unapproved VPN Services
- Wycheproof – Test Crypto Libraries Against Known Attacks

Related Posts:

Most Read in Cryptography:
- The World’s Fastest MD5 Cracker – BarsWF - 48,008 views
- Hackers Crack London Tube Oyster Card - 45,644 views
- WPA2 Vulnerability Discovered – “Hole 196” – A Flaw In GTK (Group Temporal Key) - 33,485 views


Comments are closed.