Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/iSECPartners/sslyze

Current development of SSLyze now takes place on a separate repository
https://github.com/iSECPartners/sslyze

Last synced: 15 days ago
JSON representation

Current development of SSLyze now takes place on a separate repository

Host: GitHub
URL: https://github.com/iSECPartners/sslyze
Owner: iSECPartners
License: gpl-2.0
Created: 2012-07-08T21:45:01.000Z (over 12 years ago)
Default Branch: master
Last Pushed: 2015-08-27T18:49:08.000Z (about 9 years ago)
Last Synced: 2024-08-01T16:36:58.673Z (3 months ago)
Language: Python
Homepage: https://github.com/nabla-c0d3/sslyze
Size: 2.25 MB
Stars: 649
Watchers: 65
Forks: 98
Open Issues: 7
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE.txt

Awesome Lists containing this project

awesome-termux-hacking - sslyze - Current development of SSLyze now takes place on a separate repository.[![->](https://img.shields.io/github/stars/iSECPartners/sslyze.svg?style=social&label=Star&maxAge=2592000)](https://github.com/iSECPartners/sslyze/stargazers/) (Uncategorized / Uncategorized)

README

Note
====

Current development of SSLyze now takes place on a separate repository:
[https://github.com/nabla-c0d3/sslyze](https://github.com/nabla-c0d3/sslyze).

This repository will periodically be updated from this new parent repository,
but for the most current version, please check the new repo. If you cloned the
repository but wish to track the new branch, you can update the origin using
the following command:

git remote set-url origin https://github.com/nabla-c0d3/sslyze.git

=======
SSLyze
======

Fast and full-featured SSL scanner.

Description
-----------

SSLyze is a Python tool that can analyze the SSL configuration of a server by
connecting to it. It is designed to be fast and comprehensive, and should help
organizations and testers identify misconfigurations affecting their SSL
servers.

Key features include:
* Multi-processed and multi-threaded scanning (it's fast)
* SSL 2.0/3.0 and TLS 1.0/1.1/1.2 compatibility
* Performance testing: session resumption and TLS tickets support
* Security testing: weak cipher suites, insecure renegotiation, CRIME, Heartbleed and more
* Server certificate validation and revocation checking through OCSP stapling
* Support for StartTLS handshakes on SMTP, XMPP, LDAP, POP, IMAP, RDP and FTP
* Support for client certificates when scanning servers that perform mutual authentication
* XML output to further process the scan results
* And much more !

Installation
------------

SSLyze requires Python 2.7; the supported platforms are Windows 7 32/64 bits,
Linux 32/64 bits and OS X 64 bits.

SSLyze is statically linked with OpenSSL. For this reason, the easiest
way to run SSLyze is to download one the pre-compiled packages available in
the GitHub releases section for this project, at
https://github.com/nabla-c0d3/sslyze/releases.

Usage
-----

### Command line options

The following command will provide the list of available command line options:
$ python sslyze.py -h

### Sample command line:

$ python sslyze.py --regular www.isecpartners.com:443 www.google.com

See the test folder for additional examples.

Build / nassl
-------------

SSLyze is all Python code but since version 0.7, it uses a custom OpenSSL
wrapper written in C called nassl. The pre-compiled packages for SSLyze
contain a compiled version of this wrapper in sslyze/nassl. If you want to
clone the SSLyze repo, you will have to get a compiled version of nassl from
one of the SSLyze packages and copy it to sslyze-master/nassl, in order to get
SSLyze to run.

The source code for nassl is hosted at https://github.com/nabla-c0d3/nassl.

Py2exe Build
------------

SSLyze can be packaged as a Windows executable by running the following command:

$ python.exe setup_py2exe.py py2exe

License
--------

GPLv2 - See LICENSE.txt.