LittleNellie/cipherscan
2
0
Fork 0
mirror of https://github.com/mozilla/cipherscan.git synced 2024-09-28 15:43:41 +02:00
Code Issues Releases Wiki Activity

Commit Graph

  • 1aeff568ee update SEED and IDEA classification, do a total of broken ciphers Hubert Kario 2014-10-04 12:51:34 +0200
  • 3c93cbd6c2 make handling of self signed certs more robust Hubert Kario 2014-08-04 17:22:53 +0200
  • 9a956dc5a5 use pre-parsed data outputted by the C application Hubert Kario 2014-08-03 17:19:56 +0200
  • 0591829ed1 application for finding the correct certificate chain Hubert Kario 2014-08-03 02:15:36 +0200
  • b4291236bb add collection of LoS for the cert paths found Hubert Kario 2014-08-03 01:49:52 +0200
  • 68577f7918 collect statistics about found certificates Hubert Kario 2014-07-25 17:49:44 +0200
  • ab8b794557 few less forks in the script Hubert Kario 2014-07-12 14:54:33 +0200
  • bcfe0dbae1 don't calculate sha sums for the certificates over and over Hubert Kario 2014-07-12 14:17:52 +0200
  • ef4786f1d7 no need to grep the input when we're using awk Hubert Kario 2014-07-12 01:43:54 +0200
  • caa534bfd7 don't retry protocols we know don't work Hubert Kario 2014-07-12 01:30:17 +0200
  • d2f112033d clean up the extracted certificate Hubert Kario 2014-07-11 17:29:57 +0200
  • 2b959f601d use CApath for certificates and store certificates Hubert Kario 2014-07-11 16:43:14 +0200
  • 431b453e43 add ability to also save leaf certificates and untrusted ones Hubert Kario 2014-07-04 18:51:21 +0200
  • 56893f7b2f add caching of intermediate CA certificates Hubert Kario 2014-07-04 18:36:16 +0200
  • aeffc87e05 add some comments, group related code Hubert Kario 2014-07-03 19:09:55 +0200
  • 7f5743620b add support for CApath Hubert Kario 2014-07-03 19:02:33 +0200
  • 30d0839df6 report cipher ordering in scanning stats, use it to simulate handshakes Hubert Kario 2014-07-01 00:01:32 +0200
  • ab66f04e53 report if server uses client side or server side cipher ordering Hubert Kario 2014-06-30 23:03:55 +0200
  • 0ae9d76771 openssl in -ssl2 mode doesn't tolerate -servername option Hubert Kario 2014-06-30 23:03:27 +0200
  • 5c4a8e8fd6 report what ciphers Firefox would select while connecting to server Hubert Kario 2014-06-30 21:34:56 +0200
  • 8bcc9d3cf6 report ciphers causing incompatibility for Firefox Hubert Kario 2014-06-30 10:42:53 +0200
  • 4ffa061977 make the output shorter in case the server supports all protocol types Hubert Kario 2014-06-25 14:38:59 +0200
  • 17bc04f71d add missing ocsp_staple header Hubert Kario 2014-06-25 14:37:21 +0200
  • 144e6ea2f7 sort reported TLS session ticket hint using natural sort Hubert Kario 2014-06-24 15:59:24 +0200
  • 3bab715012 count ECDH-RSA ciphers as ECDSA Hubert Kario 2014-06-24 15:34:44 +0200
  • ed50f3c400 Merge ed34c0e046 into ded65c40df #24 Olivier Paroz 2014-09-22 00:18:17 +0000
  • ed34c0e046 Merge pull request #3 from oparoz/common-name-discovery #24 Olivier Paroz 2014-09-22 02:18:16 +0200
  • e97e57ae1f Common name detector Olivier Paroz 2014-09-22 02:15:39 +0200
  • c92c1f70ce Added a common location for the cert bundle on FreeBSD Olivier Paroz 2014-09-21 16:19:23 +0200
  • ad88f047e6 Style fix Olivier Paroz 2014-09-21 16:08:50 +0200
  • 4bc2539f44 Local branch was out of sync... Olivier Paroz 2014-09-21 16:04:35 +0200
  • a76774f260 Merge pull request #2 from oparoz/patch-1 Olivier Paroz 2014-09-21 16:03:29 +0200
  • 54a54aa428 New option to enable SNI Olivier Paroz 2014-09-21 15:59:28 +0200
  • 2bc7843a9e Merge 2d75e7dc4a into ded65c40df #23 Olivier Paroz 2014-09-21 13:35:27 +0000
  • 2d75e7dc4a removed Mozilla handle #23 Olivier Paroz 2014-09-21 15:35:27 +0200
  • 8f5eb93fd9 Merge pull request #1 from oparoz/patch-1 Olivier Paroz 2014-09-16 02:12:18 +0200
  • 3cc5001ebf SNI fix Olivier Paroz 2014-09-16 02:05:01 +0200
  • 9438d64762 OpenSSL 1.0.2 is not a requirement Olivier Paroz 2014-09-15 17:38:47 +0200
  • d3b2c48e13 FreeBSD + extra chacha20 repo Olivier Paroz 2014-09-15 17:31:06 +0200
  • 0662fa61d8 FreeBSD compatible Olivier Paroz 2014-09-15 17:06:59 +0200
  • 9e07c1808d Merge d434f68772 into ded65c40df #13 Pepi Zawodsky 2014-08-31 05:35:58 +0000
  • ded65c40df Merge pull request #22 from simondeziel/sdeziel Julien Vehent 2014-08-28 16:02:36 -0400
  • ecd77f94fc Merge pull request #18 from tomato42/wip Julien Vehent 2014-08-28 16:02:19 -0400
  • 7dee967dd7 Attempt to use /etc/ssl/certs/ca-certificates.crt if no CACERTS are available. On Debian, this is the default location for system-wide trust anchors. #22 Simon Deziel 2014-07-25 10:01:31 -0400
  • 273211f025 Merge pull request #21 from azet/master Julien Vehent 2014-07-17 12:29:42 -0400
  • efd84cdb24 add real execution tracing to debug #21 Aaron Zauner 2014-07-17 18:08:29 +0200
  • e345f6034d Merge pull request #20 from PeterMosmans/binaries Julien Vehent 2014-07-13 09:22:24 -0400
  • b65c13c7b9 Compiled for 64-bit-linux from the following source: #20 Peter Mosmans 2014-07-13 20:56:17 +1000
  • 26a24d0429 Updated binary with latest 1.0.2-chacha build Peter Mosmans 2014-07-12 10:15:00 +1000
  • 60a6a02c6f Merge pull request #19 from phlipper/patch-1 Julien Vehent 2014-06-25 19:37:53 -0400
  • 5ae2132f23 minor typo fix #19 Phil Cohen 2014-06-25 16:28:48 -0700
  • 7591062bbc parse_results.py: compatibility with old results files #18 Hubert Kario 2014-06-04 18:52:39 +0200
  • be0439ef99 provide statistics for all key exchange methods, not DHE and ECDHE only Hubert Kario 2014-06-04 18:17:41 +0200
  • 3667b04ad7 correctly count broken cipher suites with "no reporting of untrusted" Hubert Kario 2014-06-04 18:17:02 +0200
  • 86ff1122cc parse_results.py: don't count anonymous cipher suites toward correct config stats Hubert Kario 2014-06-04 15:15:32 +0200
  • ee81927200 fix cipherscan human-readable output - pfs_keysize option Hubert Kario 2014-05-30 11:49:44 +0200
  • b69863c5c5 Merge branch 'master' of github.com:jvehent/cipherscan Julien Vehent 2014-05-20 08:52:09 -0400
  • 50f4959e79 updated license on parse_results.py Julien Vehent 2014-05-20 08:23:57 -0400
  • 2f56f0515e don't scan the same host twice Hubert Kario 2014-05-16 18:16:45 +0200
  • f1d3b51749 update the top 1M list to the version from 2014-05-16 Hubert Kario 2014-05-16 17:34:22 +0200
  • 4e94d95bd8 ask for OCSP stapling by default Hubert Kario 2014-05-16 17:31:44 +0200
  • 0777682aa6 collect TLS ticket lifetime hints Hubert Kario 2014-05-16 16:55:19 +0200
  • 1a78172936 scan just one host per hostname Hubert Kario 2014-05-16 16:11:01 +0200
  • cdbf596466 properly handle pure IP adressess Hubert Kario 2014-05-16 15:42:47 +0200
  • 5ef53dda9c increase paralelism of jobs Hubert Kario 2014-05-08 03:13:45 +0200
  • a213fc45d0 remove the folder/file part from url Hubert Kario 2014-05-08 02:06:57 +0200
  • 00b20a20ed perform SNI enabled scan Hubert Kario 2014-05-08 02:03:50 +0200
  • c48c012771 use the same openssl for all tasks Hubert Kario 2014-05-07 15:49:26 +0200
  • 5dfa3c444e put ECDSA ciphers before RSA ciphers Hubert Kario 2014-04-30 16:33:41 +0200
  • a0cb766381 add support for archlinux Hubert Kario 2014-04-26 22:44:52 +0200
  • 8817a7b1c8 testtop1m.sh: correct counting of background jobs Hubert Kario 2014-04-26 22:43:44 +0200
  • 92851d7c74 Merge pull request #17 from tomato42/proper-quit Julien Vehent 2014-05-12 13:36:46 -0400
  • dca614d218 use proper quit semantic for openssl s_client #17 Hubert Kario 2014-05-09 14:44:50 +0200
  • 5417dacda3 Merge pull request #16 from tomato42/restore-timeout Julien Vehent 2014-05-09 08:32:36 -0400
  • d7b99f125e restore timeout #16 Hubert Kario 2014-05-09 12:00:53 +0200
  • 325329d1ad Merge pull request #15 from tomato42/reporting-improvements-03 Julien Vehent 2014-04-20 13:16:34 -0400
  • ba4defb707 Merge pull request #14 from tomato42/scan-improvements-02 Julien Vehent 2014-04-20 13:15:44 -0400
  • 686d7c958b extend reporting of RC4-related stats #15 Hubert Kario 2014-04-06 14:19:37 +0200
  • 21bba67df0 extend SSL stats Hubert Kario 2014-04-06 14:17:24 +0200
  • 349d4ebc3c more detailed PFS report Hubert Kario 2014-04-06 14:15:32 +0200
  • d3b6f9b507 fix reporting of the TLS1.2 but not TLS1.1 Hubert Kario 2014-04-06 14:13:44 +0200
  • c8abfb53e8 add support for Chacha20 based ciphers Hubert Kario 2014-04-06 14:11:52 +0200
  • 2b794ebfe0 fix and extend reporting of AES-GCM ciphers Hubert Kario 2014-04-06 14:09:03 +0200
  • fd6fcdd359 fix spelling in TLS stats (TLS1_1 vs TLS1.1) Hubert Kario 2014-04-06 14:06:18 +0200
  • faef8d692f in "no-untrusted mode": filter out ADH and AECDH suites Hubert Kario 2014-04-05 20:21:35 +0200
  • 45dc1da3f6 add ability to ignore results from untrusted servers Hubert Kario 2014-04-05 01:33:33 +0200
  • ff620f5b26 report number of servers that use ECDSA and RSA certificates Hubert Kario 2014-04-04 21:08:38 +0200
  • 863441a179 parsing of signature algorithm and key size Hubert Kario 2014-04-04 20:18:36 +0200
  • b6b9a1a364 Improve scanning performance and reduce false negatives #14 Hubert Kario 2014-04-04 20:12:50 +0200
  • fb4cee050d Merge 0acd31af53 into 370348ba1b #11 Hubert Kario 2014-04-19 16:06:16 +0000
  • 5716501934 Merge 7a92186122 into 370348ba1b #9 Hubert Kario 2014-04-19 16:05:19 +0000
  • 370348ba1b Updated README Julien Vehent 2014-04-19 12:04:09 -0400
  • f703ca9c26 Merge pull request #12 from tomato42/certificate-scanning-02 Julien Vehent 2014-04-19 11:46:25 -0400
  • d434f68772 Changed error return codes to be in line with the advanced bash scripting recommendations of 64-113 #13 Pepi Zawodsky 2014-04-15 15:22:18 +0200
  • 16f4c5db74 Added some error handling for -o /path/to/openssl and a simple error reporting function. Pepi Zawodsky 2014-04-09 22:30:43 +0200
  • 6a394b6c87 Added check for missing OpenSSL arguments as suggested by Markus Manzke. Pepi Zawodsky 2014-04-09 20:19:56 +0200
  • 4e0e03b61e make default output more narrow #12 Hubert Kario 2014-04-06 18:01:13 +0200
  • 0acd31af53 extend reporting of RC4-related stats #11 Hubert Kario 2014-04-06 14:19:37 +0200
  • 010ebccd80 extend SSL stats Hubert Kario 2014-04-06 14:17:24 +0200
  • 39c3e1978a more detailed PFS report Hubert Kario 2014-04-06 14:15:32 +0200