CryptoLyzer VS PageSigner

CryptoLyzer added SSH vulnerability check in its 0.12.2 version. Terrapin attack includedd. https://cryptolyzer.readthedocs.io/en/latest/changelog/#id1

You can also use CryptoLyzer[1] to audit your TLS (not just HTTPS, but SMTP, IMAP, ...) and SSH servers if you do not want to use SaaS solutions.

There are another tools (open source and SaaS) on OWASP Transport Layer Protection Cheat Sheet page[2].

[1] https://gitlab.com/coroner/cryptolyzer

I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html

I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html

I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). htps://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html

I am the author of the project. On the following link, you can find a blog post about CryptoLyzer with competitor comparison (e.g., SSLyze, testssl.sh). https://pfeifferszilard.hu/2021/12/27/cryptolyzer-a-comprehensive-cryptographic-settings-analyzer.html

> how do you ensure that they are indeed scraping and not just making up spam?

https://tlsnotary.org/pagesigner

Cool! Now you can prove to anyone that you have access to private data in ANY server which supports TLS! (Virtually all do). The server didn't have to change anything, it was completely transparent to them. And you didn't have to grant the notary access to the data. That's pretty huge. This technique has, to my surprise, existed for quite some time: TLSNotary and more recently DECO which has been acquired by... Chainlink. DECO looks to be the holy grail, it takes it further by mixing in ZK proofs so that you can selectively reveal certain parts of the server response. I'm not informed enough to say for certain, but I think the 2PC could be expanded to (N)PC which would give you a 1 of N trust model! Alternatively you could just re-execute the same query multiple times with different notaries and have them all agree, still 1 of N.