Jump to content
Nytro

testssl.sh: Testing TLS/SSL encryption

By Nytro, in Programe securitate

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

testssl.sh: Testing TLS/SSL encryption

Name Last Modified Size Type
legacy-2.6/ 2016-Nov-13 12:37:56 -- Directory
openssl-1.0.2i-chacha.pm.ipv6.contributed/ 2016-Sep-26 23:15:22 -- Directory
 
CHANGELOG.txt 2015-Sep-15 10:56:45 12.27KB TXT Type Document
LICENSE.txt 2014-May-03 11:04:22 17.59KB TXT Type Document
OPENSSL-LICENSE.txt 2015-Oct-13 00:12:23 58.08KB TXT Type Document
bash-heartbleed.changelog.txt 2014-May-03 17:37:15 572.00B TXT Type Document
bash-heartbleed.sh 2015-Oct-27 15:11:18 3.98KB SH File
ccs-injection.sh 2014-Jun-14 23:44:42 3.94KB SH File
mapping-rfc.txt 2014-Dec-21 00:52:13 15.88KB TXT Type Document
openssl-1.0.2e-chacha.pm.tar.gz 2015-Sep-15 09:23:07 11.65MB GZ Compressed Archive
openssl-1.0.2e-chacha.pm.tar.gz.asc 2015-Sep-16 01:17:54 828.00B ASC File
openssl-1.0.2i-chacha.pm.ipv6.Linux+FreeBSD.tar.gz 2016-Jun-23 11:34:57 9.45MB GZ Compressed Archive
openssl-1.0.2i-chacha.pm.ipv6.Linux+FreeBSD.tar.gz.asc 2016-Jun-23 11:33:36 811.00B ASC File
openssl-ms14-066.Linux.x86_64 2016-Apr-15 12:36:23 4.24MB X86_64 File
openssl-rfc.mappping.html 2016-Feb-06 16:19:09 57.88KB HTML File
testssl.sh 2016-Nov-20 19:26:02 427.82KB SH File


testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more. 

Standard call: testssl.sh <hostname>

 

Version 2.8 is being finalized. 2.6 is outdated, has more bugs and less features. Please checkout 2.8rc3 @ github or download the stable 2.8rc3 version from here

Key features

  • Clear output: you can tell easily whether anything is good or bad
  • Ease of installation: It works for Linux, Darwin, FreeBSD and MSYS2/Cygwin out of the box: no need to install or configure something, no gems, CPAN, pip or the like.
  • Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only webservers at port 443
  • Toolbox: Several command line options help you to run YOUR test and configure YOUR output
  • Reliability: features are tested thoroughly
  • Verbosity: If a particular check cannot be performed because of a missing capability on your client side, you'll get a warning
  • Privacy: It's only you who sees the result, not a third party
  • Freedom: It's 100% open source. You can look at the code, see what's going on and you can change it. Heck, even the development is open (github)

 

Link: https://testssl.sh/

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...