CryptoLyzer
Mitigating-Obsolete-TLS
| CryptoLyzer | Mitigating-Obsolete-TLS | |
|---|---|---|
| 8 | 4 | |
| - | 259 | |
| - | - | |
| - | 0.0 | |
| - | about 3 years ago | |
| Python | PowerShell | |
| Mozilla Public License 2.0 | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CryptoLyzer
-
Terrapin-Scanner VS CryptoLyzer - a user suggested alternative
2 projects | 14 Jan 2024
CryptoLyzer added SSH vulnerability check in its 0.12.2 version. Terrapin attack includedd. https://cryptolyzer.readthedocs.io/en/latest/changelog/#id1
- Server TLS settings analyzer CryptoLyzer with OpenVPN support has released
- CryptoLyzer 0.8.5 with browser (Chromium, Firefox, Opera) compatibility checker
-
DHEat Attack
You can also use CryptoLyzer[1] to audit your TLS (not just HTTPS, but SMTP, IMAP, ...) and SSH servers if you do not want to use SaaS solutions.
There are another tools (open source and SaaS) on OWASP Transport Layer Protection Cheat Sheet page[2].
[1] https://gitlab.com/coroner/cryptolyzer
-
ssh-audit VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
2 projects | 24 Jan 2022I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
-
testssl.sh VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
-
sslyze VS cryptolyzer - a user suggested alternative
2 projects | 24 Jan 2022
I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html
Mitigating-Obsolete-TLS
-
How can I mask my ip?
NSA reading for securing TLS from Obsolete protocols
-
Looking for a method of blocking TLS 1.0 client traffic at the PFSense firewall.
Snort rules from NSA Cybersecurity Directorate: https://github.com/nsacyber/Mitigating-Obsolete-TLS/tree/master/snort
-
Wednesday Links - Edition 2021-01-13
Mitigating Obsolete TLS (2 min read) 🛡️ https://github.com/nsacyber/Mitigating-Obsolete-TLS
- Guidance for mitigating obsolete Transport Layer Security configurations
What are some alternatives?
davmail - DavMail POP/IMAP/SMTP/Caldav/Carddav/LDAP Exchange and Office 365 Gateway - Synced with main subversion repository at
Suricata - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
ssh-audit - SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
tlsassistant - An open-source modular framework capable of identifying a wide range of TLS vulnerabilities and assessing compliance with multiple guidelines. Its actionable report can assist the user in correctly and easily fixing their configurations.
psql-hooks - Unofficial documentation for PostgreSQL hooks
SDKMan - The SDKMAN! Command Line Interface
PageSigner - Client for the TLSNotary protocol (Chromium extension).
LetsEncrypt-PRTG - Post request script to install an SSL certificate obtained with Certify the Web or win-acme in PRTG.
server-side-tls - Server side TLS Tools
PSTcpIp - This PowerShell module contains functions that faciliate testing network connectivity, TLS/SSL and other network tasks
jssh - Seemless ssh through jumpboxes & bastion hosts
Windows-Optimize-Harden-Debloat - Enhance the security and privacy of your Windows 10 and Windows 11 deployments with our fully optimized, hardened, and debloated script. Adhere to industry best practices and Department of Defense STIG/SRG requirements for optimal performance and security.