TLSSLed 介绍

TLSSLed是Linux shell脚本,其目的是评价目标SSL/TLS(HTTPS)web服务器执行的安全性。它是基于sslscan,彻底SSL/TLS的扫描器,它基于OpenSSL库,并在“OpenSSL的s_client”的命令行工具。当前测试包括检查所述目标支持的SSLv2协议,空密码,弱密码基于其密钥长度(40或56位),强密码(如AES)的可用性,如果数字证书的MD5签名,和当前的SSL/TLS的重新协商能力。

资料来源:http://www.taddong.com/en/lab.html
TLSSLed 首页
TLSSLed 源代码版本库

包含在tlssled里的其它工具

tlssled - 评测基于SSL/TLS(HTTPS)服务器的安全

:~# tlssled
------------------------------------------------------
 TLSSLed - (1.3) based on sslscan and openssl
                 by Raul Siles (www.taddong.com)
------------------------------------------------------
    openssl version: OpenSSL 1.0.1e 11 Feb 2013
    sslscan version 1.8.2
------------------------------------------------------
    Date: 20140520-110731
------------------------------------------------------

[!] Usage: /usr/bin/tlssled <hostname or IP_address> <port>

TLSSLed 用法示例

检查SSL/TLS的主机(192.168.1.1)和端口(443)上:

:~# tlssled 192.168.1.1 443
------------------------------------------------------
 TLSSLed - (1.3) based on sslscan and openssl
                 by Raul Siles (www.taddong.com)
------------------------------------------------------
    openssl version: OpenSSL 1.0.1e 11 Feb 2013
    sslscan version 1.8.2
------------------------------------------------------
    Date: 20140513-165131
------------------------------------------------------

[*] Analyzing SSL/TLS on 192.168.1.1:443 ...
    [.] Output directory: TLSSLed_1.3_192.168.1.1_443_20140513-165131 ...

[*] Checking if the target service speaks SSL/TLS...
    [.] The target service 192.168.1.1:443 seems to speak SSL/TLS...

    [.] Using SSL/TLS protocol version:
        (empty means I'm using the default openssl protocol version(s))

[*] Running sslscan on 192.168.1.1:443 ...

    [-] Testing for SSLv2 ...

    [-] Testing for the NULL cipher ...