sslscan website
heartbeat vulnerability
Another tool that performs a thorough sweep and analyzes the SSL/TLS configurations of a target service is SSLyze. To perform the majority of the basic tests in SSLyze, arguments should include the target server and the --regular argument. This includes tests for SSLv2, SSLv3, TLSv1, renegotiation, resumption, certificate information, HTTP GET response status codes, and compression support as follows:
root@KaliLinux:~# sslyze google.com --regular
Showing posts with label SSL. Show all posts
Showing posts with label SSL. Show all posts
Sunday, October 28, 2018
Friday, December 1, 2017
Transport Layer Security: SSL / TLS
• Secure Sockets Layer (SSL)
- Desenvolvido pela Netscape em 1994
- Parte do pacote comercial cliente / servidor
- Primeiro aplicativo de chave pública bem sucedido
• Herdado pelo IETF
- Agora chamado Transport Layer Security (TLS)
• Protocolo de três partes
- Handshake - troca de chaves
- Gravação - troca de dados
- Alerta - erros e encerramento da sessão
Subscribe to:
Posts (Atom)
The Nexus of Policy and Technology: An Expert Report on Allegations of Political Bias in Gmail's Spam Filtering
Executive Summary: The Nexus of Policy and Technology The Federal Trade Commission (FTC) has initiated a new wave of regulatory scrutiny a...
-
Summarization of hundreds of comments on Reddit. Ineffective Service: The users explicitly states, "Confirmed that it doesn't w...
-
Based on a review of the provided Privacy Policy , here are some potential legal implications and issues that should be addressed: Scope a...