2
0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-22 06:13:42 +01:00

Merge pull request #131 from castillar/master

Added info about OpenSSL proxy option to cipherscan script.
This commit is contained in:
Julien Vehent [:ulfr] 2017-01-13 16:15:15 -05:00 committed by GitHub
commit 1f2846d54e

View File

@ -250,6 +250,8 @@ Some useful OpenSSL options:
that require turning TLS after initial protocol specific that require turning TLS after initial protocol specific
hello hello
-servername name Request SNI support for connections -servername name Request SNI support for connections
-proxy proxyhost:port Connect to the scan target via specified proxy
(req. OpenSSL 1.1.0 or bundled OpenSSL)
-verify_hostname name Request host name verification in connection -verify_hostname name Request host name verification in connection
(req. OpenSSL 1.0.2) (req. OpenSSL 1.0.2)
-verify_ip ip Request host name verification for an IP address, usually -verify_ip ip Request host name verification for an IP address, usually
@ -258,6 +260,7 @@ Some useful OpenSSL options:
EXAMPLES: EXAMPLES:
$0 -starttls xmpp jabber.ccc.de:5222 $0 -starttls xmpp jabber.ccc.de:5222
$0 -servername youtube.com youtube.com:443 $0 -servername youtube.com youtube.com:443
$0 -proxy myproxy.example.com:8080 youtube.com:443
" "
} }
@ -843,7 +846,7 @@ display_results_in_terminal() {
fi fi
done|column -t done|column -t
echo echo
if [[ ($sigalg =~ RSA && $pubkey -ge 2047) || ($cipher =~ ECDSA && $pubkey -gt 255) ]]; then if [[ ($sigalg =~ RSA && $pubkey -ge 2047) || ($cipher =~ ECDSA && $pubkey -gt 255) ]]; then
pubkey="${c_green}${pubkey}${c_reset}" pubkey="${c_green}${pubkey}${c_reset}"
else else