[clug] Crypto debugging
cturton at gbglobal.com
Fri Feb 4 03:12:21 UTC 2022
No probs - glad to flag it.
Came across these during the heartbleed revelations. Had to download the
Lua scripts from insecure.org nse library back then, but now I believe
the most utilised ones are bundled with later nmap updates. My default
(Mint) repo install seems to run them out-of-the-box. Although not sure
where the GUI (zenmap) wrapper package has gone to.
On 4/2/22 11:33, Tony Lewis via linux wrote:
> On 4/2/22 11:23 am, Bob Edwards via linux wrote:
>> On 3/2/22 7:48 pm, Chris Turton wrote:
>>> There's always nmap ( in most repos I would have thought) with the
>>> relevant lua scripts to check certs and cipher suites for a given host.
>>> Ref: https://jumpnowtek.com/security/Using-nmap-to-check-certs-and-supported-algos.html
>> Hi Chris,
>> Great tip! I didn't know about these nmap scripts.
> Seconded, thanks Chris.
> In fact a colleague pointed out the ssl-enum-ciphers script and we
> used it, with some success. But I wasn't aware of the others, and the
> blog post is very useful.
More information about the linux