LittleNellie/cipherscan
2
0
Fork 0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-11-22 14:23:41 +01:00
Code Issues Releases Wiki Activity

Doc + cleanup

Browse Source
This commit is contained in:
Julien Vehent 2013-07-17 15:06:34 -04:00
parent 4f604d048c
commit d55eeae308
2 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
CiphersScan.sh
View File

@ -2,8 +2,8 @@
DOBENCHMARK=0 DOBENCHMARK=0
BENCHMARKITER=10 BENCHMARKITER=10
#OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl" OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl"
OPENSSLBIN=$(which openssl) #OPENSSLBIN=$(which openssl)
REQUEST="GET / HTTP/1.1 REQUEST="GET / HTTP/1.1
Host: $TARGET Host: $TARGET
@ -22,12 +22,12 @@ verbose() {
test_cipher_on_target() { test_cipher_on_target() {
local sslcommand=$@ local sslcommand=$@
local tmp=$(mktemp) local tmp=$(mktemp)
$sslcommand 1>$tmp 2>/dev/null << EOF $sslcommand 1>"$tmp" 2>/dev/null << EOF
$REQUEST $REQUEST
EOF EOF
# Parse the result # Parse the result
result=$(grep "New, " $tmp|awk '{print $5}') result=$(grep "New, " $tmp|awk '{print $5}')
rm $tmp rm "$tmp"
if [ "$result" == '(NONE)' ]; then if [ "$result" == '(NONE)' ]; then
verbose "handshake failed, server returned ciphersuite '$result'" verbose "handshake failed, server returned ciphersuite '$result'"
return 1 return 1

4
README.md
View File

@ -6,3 +6,7 @@ Run: ./CipherScan.sh www.google.com:443 -v
And watch. And watch.
Edit the script if you need more (disable benchmarking by setting DOBENCHMARK to 0). Edit the script if you need more (disable benchmarking by setting DOBENCHMARK to 0).
The newer your version of openssl, the better results you'll get. Older versions
of OpenSSL don't support TLS1.2 ciphers, elliptic curves, etc... Build Your Own!