[clug] Crypto debugging

Chris Turton cturton at gbglobal.com
Fri Feb 4 03:12:21 UTC 2022

No probs - glad to flag it.

Came across these during the heartbleed revelations. Had to download the 
Lua scripts from insecure.org nse library back then, but now I believe 
the most utilised ones are bundled with later nmap updates. My default 
(Mint) repo install seems to run them out-of-the-box. Although not sure 
where the GUI (zenmap) wrapper package has gone to.


On 4/2/22 11:33, Tony Lewis via linux wrote:
> On 4/2/22 11:23 am, Bob Edwards via linux wrote:
>> On 3/2/22 7:48 pm, Chris Turton wrote:
>>> There's always nmap ( in most repos I would have thought) with the 
>>> relevant lua scripts to check certs and cipher suites for a given host.
>>> Ref: https://jumpnowtek.com/security/Using-nmap-to-check-certs-and-supported-algos.html 
>> Hi Chris,
>> Great tip! I didn't know about these nmap scripts.
> Seconded, thanks Chris.
> In fact a colleague pointed out the ssl-enum-ciphers script and we 
> used it, with some success.  But I wasn't aware of the others, and the 
> blog post is very useful.
> Tony

More information about the linux mailing list