ssltest¶
Welcome to the main documentation for the ssltest
scanning tool. This tool is also available at pypi.
Features¶
Scan web servers cryptographic parameters and chosen vulnerabilities.
Available features can be found on the features page.
All available Vulnerability tests can be found in the -h/--help
output of the script, or in the vulnerability tests page on this documentation.
Installation¶
To install from pypi run:
pip install ssltest
To install a more up-to-date version run:
git clone git@github.com:SamoKopecky/ssltest.git && \
cd ssltest && \
pip install .
Nmap is required for some functions of the script (--ns/--nmap-scan
and --nd/--nmap-discover
), install on debian-like distros with:
apt-get install -y nmap
Usage examples¶
Basic scan with no vulnerability tests:
ssltest -u nmap.org -t 0
Scan all vulnerability tests and available cipher suites:
ssltest -u nmap.org -cs
Scan for Heartbleed
vulnerability, scan the whole certificate chain and shorted alternative names in the output:
ssltest -u nmap.org -t 9 -cc -sn
Scan using custom config files in debug mode:
ssltest -u nmap.org -c ~/.config/custom_ssltest -d