{"id":13468697,"url":"https://github.com/nabla-c0d3/sslyze","last_synced_at":"2025-05-13T21:02:50.868Z","repository":{"id":19799012,"uuid":"23058769","full_name":"nabla-c0d3/sslyze","owner":"nabla-c0d3","description":"Fast and powerful SSL/TLS scanning library.","archived":false,"fork":false,"pushed_at":"2025-04-06T14:57:06.000Z","size":20873,"stargazers_count":3597,"open_issues_count":26,"forks_count":472,"subscribers_count":131,"default_branch":"release","last_synced_at":"2025-05-06T20:24:29.180Z","etag":null,"topics":["heartbleed","library","python","scans","security","ssl","ssllabs","sslyze","tls","tls-scanning-library","tls13"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":"asathoor/WordPress_and_MySQL","license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nabla-c0d3.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2014-08-18T04:33:30.000Z","updated_at":"2025-05-03T12:59:45.000Z","dependencies_parsed_at":"2023-09-24T10:43:01.471Z","dependency_job_id":"f1eb0c55-7e95-46fc-9a80-2da635204f2b","html_url":"https://github.com/nabla-c0d3/sslyze","commit_stats":{"total_commits":1697,"total_committers":71,"mean_commits":"23.901408450704224","dds":0.1750147318797879,"last_synced_commit":"fccf7f9dd49178d0dae5e41599d4e13de64896d3"},"previous_names":[],"tags_count":78,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabla-c0d3%2Fsslyze","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabla-c0d3%2Fsslyze/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabla-c0d3%2Fsslyze/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nabla-c0d3%2Fsslyze/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nabla-c0d3","download_url":"https://codeload.github.com/nabla-c0d3/sslyze/tar.gz/refs/heads/release","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":254027378,"owners_count":22002049,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["heartbleed","library","python","scans","security","ssl","ssllabs","sslyze","tls","tls-scanning-library","tls13"],"created_at":"2024-07-31T15:01:16.954Z","updated_at":"2025-05-13T21:02:50.804Z","avatar_url":"https://github.com/nabla-c0d3.png","language":"Python","funding_links":[],"categories":["Tools","Python","\u003ca id=\"8f92ead9997a4b68d06a9acf9b01ef63\"\u003e\u003c/a\u003e扫描器\u0026\u0026安全扫描\u0026\u0026App扫描\u0026\u0026漏洞扫描","Network Tools","Uncategorized","Awesome Penetration Testing","📚 Learning Resources","Others","\u003ca id=\"132036452bfacf61471e3ea0b7bf7a55\"\u003e\u003c/a\u003e工具","Tools to check security hardening","Network","Awesome Penetration Testing (\"https://github.com/Muhammd/Awesome-Pentest\")"],"sub_categories":["Scanner","\u003ca id=\"de63a029bda6a7e429af272f291bb769\"\u003e\u003c/a\u003e未分类-Scanner","Transport Layer Security Tools","Uncategorized","Tools","A02:2021 – Cryptographic Failures","TLS/SSL"],"readme":"SSLyze\n======\n\n![Run Tests](https://github.com/nabla-c0d3/sslyze/workflows/Run%20Tests/badge.svg)\n[![Downloads](https://pepy.tech/badge/sslyze/month)](https://pepy.tech/project/sslyze)\n[![PyPI version](https://img.shields.io/pypi/v/sslyze.svg)](https://pypi.org/project/sslyze/)\n[![Python version](https://img.shields.io/pypi/pyversions/sslyze.svg)](https://pypi.org/project/sslyze/)\n\nSSLyze is a fast and powerful SSL/TLS scanning tool and Python library.\n\nSSLyze can analyze the SSL/TLS configuration of a server by connecting to it, in order to ensure that it uses strong\nencryption settings (certificate, cipher suites, elliptic curves, etc.), and that it is not vulnerable to known TLS\nattacks (Heartbleed, ROBOT, OpenSSL CCS injection, etc.).\n\nKey features\n------------\n\n* Focus on speed and reliability: SSLyze is a battle-tested tool that is used to reliably scan **hundreds of thousands**\nof servers every day.\n* Easy to operationalize: SSLyze can be directly run from CI/CD, in order to continuously check a server against \nMozilla's recommended TLS configuration.\n* Fully documented [Python API](https://nabla-c0d3.github.io/sslyze/documentation/) to run scans directly from any\nPython application, such as a function deployed to AWS Lambda.\n* Support for scanning non-HTTP servers including SMTP, XMPP, LDAP, POP, IMAP, RDP, Postgres and FTP servers.\n* Results of a scan can easily be saved to a JSON file for later processing.\n* And much more!\n\nQuick start\n-----------\n\nOn Windows, Linux (x86 or x64) and macOS, SSLyze can be installed directly via pip:\n\n```\n$ pip install --upgrade pip setuptools wheel\n$ pip install --upgrade sslyze\n$ python -m sslyze www.yahoo.com www.google.com \"[2607:f8b0:400a:807::2004]:443\"\n```\n\nIt can also be used via Docker:\n\n```\n$ docker run --rm -it nablac0d3/sslyze:6.1.0 www.google.com\n```\n\nLastly, a pre-compiled Windows executable can be downloaded from [the Releases\npage](https://github.com/nabla-c0d3/sslyze/releases).\n\nPython API Documentation\n------------------------\n\nA sample script describing how to use the SSLyze's Python API is available at [./api_sample.py](https://github.com/nabla-c0d3/sslyze/blob/release/api_sample.py).\n\nFull documentation for SSLyze's Python API is [available here][documentation].\n\nUsage as a CI/CD step\n---------------------\n\nBy default, SSLyze will check the server's scan results against Mozilla's recommended [\"intermediate\" TLS\nconfiguration](https://wiki.mozilla.org/Security/Server_Side_TLS), and will return a non-zero exit code if the server\nis not compliant. \n\n```\n$ python -m sslyze mozilla.com\n```\n```\nChecking results against Mozilla's \"intermediate\" configuration. See https://ssl-config.mozilla.org/ for more details.\n\nmozilla.com:443: OK - Compliant.\n```\n\nThe Mozilla configuration to check against can be configured via `--mozilla_config={old, intermediate, modern}`:\n```\n$ python -m sslyze --mozilla_config=modern mozilla.com\n```\n```\nChecking results against Mozilla's \"modern\" configuration. See https://ssl-config.mozilla.org/ for more details.\n\nmozilla.com:443: FAILED - Not compliant.\n    * certificate_types: Deployed certificate types are {'rsa'}, should have at least one of {'ecdsa'}.\n    * certificate_signatures: Deployed certificate signatures are {'sha256WithRSAEncryption'}, should have at least one of {'ecdsa-with-SHA512', 'ecdsa-with-SHA256', 'ecdsa-with-SHA384'}.\n    * tls_versions: TLS versions {'TLSv1.2'} are supported, but should be rejected.\n    * ciphers: Cipher suites {'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384', 'TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256', 'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256'} are supported, but should be rejected.\n```\n\nThis can be used to easily run an SSLyze scan as a CI/CD step.\n\nDevelopment environment\n-----------------------\n\nTo setup a development environment:\n\n```\n$ pip install --upgrade pip setuptools wheel\n$ pip install -e . \n$ pip install -r requirements-dev.txt\n```\n\nThe tests can then be run using:\n\n```\n$ invoke test\n```\n\nLicense\n-------\n\nCopyright (c) 2025 Alban Diquet\n\nSSLyze is made available under the terms of the GNU Affero General Public License (AGPL). See LICENSE.txt for details and exceptions.\n\n[documentation]: https://nabla-c0d3.github.io/sslyze/documentation\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnabla-c0d3%2Fsslyze","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnabla-c0d3%2Fsslyze","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnabla-c0d3%2Fsslyze/lists"}