mirror of
https://github.com/mozilla/cipherscan.git
synced 2024-11-22 14:23:41 +01:00
Doc + cleanup
This commit is contained in:
parent
4f604d048c
commit
d55eeae308
@ -2,8 +2,8 @@
|
||||
|
||||
DOBENCHMARK=0
|
||||
BENCHMARKITER=10
|
||||
#OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl"
|
||||
OPENSSLBIN=$(which openssl)
|
||||
OPENSSLBIN="/home/ulfr/Code/openssl/apps/openssl"
|
||||
#OPENSSLBIN=$(which openssl)
|
||||
REQUEST="GET / HTTP/1.1
|
||||
Host: $TARGET
|
||||
|
||||
@ -22,12 +22,12 @@ verbose() {
|
||||
test_cipher_on_target() {
|
||||
local sslcommand=$@
|
||||
local tmp=$(mktemp)
|
||||
$sslcommand 1>$tmp 2>/dev/null << EOF
|
||||
$sslcommand 1>"$tmp" 2>/dev/null << EOF
|
||||
$REQUEST
|
||||
EOF
|
||||
# Parse the result
|
||||
result=$(grep "New, " $tmp|awk '{print $5}')
|
||||
rm $tmp
|
||||
rm "$tmp"
|
||||
if [ "$result" == '(NONE)' ]; then
|
||||
verbose "handshake failed, server returned ciphersuite '$result'"
|
||||
return 1
|
||||
|
@ -6,3 +6,7 @@ Run: ./CipherScan.sh www.google.com:443 -v
|
||||
And watch.
|
||||
|
||||
Edit the script if you need more (disable benchmarking by setting DOBENCHMARK to 0).
|
||||
|
||||
The newer your version of openssl, the better results you'll get. Older versions
|
||||
of OpenSSL don't support TLS1.2 ciphers, elliptic curves, etc... Build Your Own!
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user