Mitigating-Obsolete-TLS
CryptoLyzer
Our great sponsors
Mitigating-Obsolete-TLS | CryptoLyzer | |
---|---|---|
4 | 8 | |
259 | - | |
- | - | |
0.0 | - | |
about 3 years ago | - | |
PowerShell | Python | |
GNU General Public License v3.0 or later | Mozilla Public License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Mitigating-Obsolete-TLS
-
How can I mask my ip?
NSA reading for securing TLS from Obsolete protocols
-
Looking for a method of blocking TLS 1.0 client traffic at the PFSense firewall.
Snort rules from NSA Cybersecurity Directorate: https://github.com/nsacyber/Mitigating-Obsolete-TLS/tree/master/snort
-
Wednesday Links - Edition 2021-01-13
Mitigating Obsolete TLS (2 min read) 🛡️ https://github.com/nsacyber/Mitigating-Obsolete-TLS
- Guidance for mitigating obsolete Transport Layer Security configurations
CryptoLyzer
-
Terrapin-Scanner VS CryptoLyzer - a user suggested alternative
2 projects | 14 Jan 2024
CryptoLyzer added SSH vulnerability check in its 0.12.2 version. Terrapin attack includedd. https://cryptolyzer.readthedocs.io/en/latest/changelog/#id1
- Server TLS settings analyzer CryptoLyzer with OpenVPN support has released
- CryptoLyzer 0.8.5 with browser (Chromium, Firefox, Opera) compatibility checker
-
DHEat Attack
You can also use CryptoLyzer[1] to audit your TLS (not just HTTPS, but SMTP, IMAP, ...) and SSH servers if you do not want to use SaaS solutions.
There are another tools (open source and SaaS) on OWASP Transport Layer Protection Cheat Sheet page[2].
[1] https://gitlab.com/coroner/cryptolyzer
-
ssh-audit VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
2 projects | 24 Jan 2022I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
-
testssl.sh VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
-
sslyze VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
What are some alternatives?
Suricata - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
davmail - DavMail POP/IMAP/SMTP/Caldav/Carddav/LDAP Exchange and Office 365 Gateway - Synced with main subversion repository at
tlsassistant - An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.
ssh-audit - SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
SDKMan - The SDKMAN! Command Line Interface
psql-hooks - Unofficial documentation for PostgreSQL hooks
LetsEncrypt-PRTG - Post request script to install an SSL certificate obtained with Certify the Web or win-acme in PRTG.
PageSigner - Client for the TLSNotary protocol (Chromium extension).
PSTcpIp - This PowerShell module contains functions that faciliate testing network connectivity, TLS/SSL and other network tasks
server-side-tls - Server side TLS Tools
Windows-Optimize-Harden-Debloat - Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STIG/SRG requirements for optimal performance and security.
jssh - Seemless ssh through jumpboxes & bastion hosts