research
testssl.sh
Our great sponsors
| research | testssl.sh | |
|---|---|---|
| 7 | 43 | |
| 2,137 | 7,647 | |
| 0.2% | - | |
| 0.0 | 8.7 | |
| about 1 year ago | 1 day ago | |
| Shell | ||
| - | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
research
-
Qualys Ciphers
Something like https://github.com/ssllabs/research/wiki/SSL-and-TLS-Deployment-Best-Practices ?
-
[Nginx] Configuration about TLS
SSL and TLS Deployment Best Practices - ssllabs / research - GitHub
- E-tjenesten får teste omstridt overvåkningssystem: – En skinnprosess – NRK
-
Wi-Fine
As of July 2022, only 55% of sites have secure SSL implementations (configuration errors and renegotiation vulnerabilities seem to drive the 45% who are insecure). - SSL Pulse, Qualys SSL Labs - a monthly scan of security issues in SSL implementations across the top 150k Alexa sites (https://www.ssllabs.com/ssl-pulse/). Methodology (https://github.com/ssllabs/research/wiki/SSL-Server-Rating-G...).
Disclaimer: I'm exploring an open source, community VPN called OpenRelay here: https://github.com/triumphantomato/openrelay
-
FYI: Notes on TLS/SSL of newsservers
Specification documentation https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide
- TLS 1.2 & 1.3 Cipher suite
testssl.sh
-
Badssl.com
You’re in luck because such a tool exists :) https://testssl.sh/
- Testing TLS/SSL Encryption
-
Uncertain how to proceed with patching SSL and TLS issues in MacOS (Sweet32)
Run https://testssl.sh/ and see what ciphers are being offered.
-
Changing SSL Wildcard Certificate
There is https://github.com/drwetter/testssl.sh utility. It can help diagnose issues (e.g. diffs between working and non-working sites).
- Specific SSL Ciphers Test
-
SSL Diag Tool
For internal use, there's https://testssl.sh/
-
Dovecot not offering TLSv1.2 after a few minutes
The current configuration allows for TLSv1 to TLSv1.3 connections. I can verify those using testssl.sh, the tests will succeed (although correctly mentioning, that TLSv1 and TLSv1.1 should be disabled). Running the tests again after about 5 minutes, the results are different. TLSv1.2 now shows "not offered and downgraded to a weaker protocol".
- How to combine pem file and 3 security certificates?
- oggi 2022-11-01 verrà rilasciata una vulnerabilità di livello CRITICAL su OpenSSL 3.0.x
-
alternative to whatsmychaincert.com cli or gui
testssl.sh
What are some alternatives?
protocols - A zkRollup DEX & Payment Protocol
https-ssl-cert-check-zabbix - Script to check validity and expiration of TLS/SSL certificate on hosts. May be used with Zabbix or standalone.
kubernetes-the-hard-way - Bootstrap Kubernetes the hard way. No scripts.
ssh-audit - SSH server auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
ssh-audit - SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
OpenSSL - TLS/SSL and crypto library
f5-azure-arm-templates - Azure Resource Manager Templates for quickly deploying BIG-IP services in Azure
nitter - Alternative Twitter front-end
spaRSS-DecSync - Android application to sync RSS without a server using DecSync
spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
ShellCheck - ShellCheck, a static analysis tool for shell scripts