cipherscan
cmcollctr
cipherscan | cmcollctr | |
---|---|---|
2 | 2 | |
1,937 | 11 | |
0.6% | - | |
2.5 | 0.0 | |
3 months ago | over 5 years ago | |
Python | C# | |
Mozilla Public License 2.0 | Microsoft Public License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cipherscan
-
CryptoLyzer: A comprehensive cryptographic settings analyzer
There are many notable open-source projects (SSLyze, CipherScan, testssl.sh, tls-scan, …) and several SaaS solutions (CryptCheck, CypherCraft, Hardenize, ImmuniWeb, Mozilla Observatory, SSL Labs, …) to do a security setting analysis, especially when we are talking about TLS, which is the most common and popular cryptographic protocol. However, most of these tools heavily depend on one or more versions of one or more cryptographic protocol libraries, like GnuTLS, OpenSSL, or wolfSSL. But why is this such a problem?
-
A friendly reminder from the good guys at NSA to stop using obsolete TLS versions and cipher suites.
There is also Mozilla Cipherscan too.
cmcollctr
- Best SCCM Tools Free/Paid
-
A friendly reminder from the good guys at NSA to stop using obsolete TLS versions and cipher suites.
I use security filtering in the GPO, remove authenticated users, and add a security group that contains the computers\servers as memebers that I want to apply the new GPO, then do the "gpupdate /sync /boot", twice. To apply gpo and reboot twice to a bunch of systems, I might use psexec, or collection commander https://github.com/rzander/cmcollctr/releases or just wait an hour for group policy to apply, use "shutdown.exe /i" (shutdown GUI), kick off a restart on servers, wait another hour to ensure group policy is applied again, then restart the list of servers again.
What are some alternatives?
sslyze - Fast and powerful SSL/TLS scanning library.
SchannelConfiguration - Configure SChannel Security Settings via Group Policy
tls-scan - An Internet scale, blazing fast SSL/TLS scanner ( non-blocking, event-driven )
CMPackager - Creates ConfigMgr Applications using XML Recipe Files
engine - A reference implementation of the Russian GOST crypto algorithms for OpenSSL
sccmclictr - Client Center for Configuration Manager
Win32App-Migration-Tool
testssl.sh - Testing TLS/SSL encryption anywhere on any port
Get-CMUnusedSources - A PowerShell script that will tell you what folders are not used by Microsoft Endpoint Manager Configuration Manager.
warehouse - The Python Package Index
wolfssl - The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!