sslciphercheck v1.2.0
Info
This update has been on the cards for about 1.5 years...Finally sslciphercheck performs a standard GET HTTP request! Along with the ability to check specific URL's (-u) e.g. "/Secure/".
Each successful HTTP response can be logged to a separate file (-t), with the file name being like so PROTOCOL_ALGORITHM_STRENGTH.html e.g. SSLv3_AES256-SHA_256.html. The HTTP responses are parsed so that the headers are extracted and each line combined with a <BR> HTML tag so they display nicely at the top of the file, so you don't have to view the HTML source.
The first line of the HTTP response is output to the console so you can get a quick overview of the responses e.g. HTTP/1.1 200 OK or HTTP/1.1 301 Moved Permanently etc.
It can also do a keyword(s) match in the HTML response, so if you know that a particular word(s) appears on a failure page for example requesting a 128 bit secure connection then it can be automatically matched.
Changes
- Updated openssl to v0.9.8l (5 Nov 2009)
- Rewritten the protocol/algorithm support code, so that only the supported algorithms for each of the three protocols is now checked
- Added supported for specific URL checking (-u)
- Added the ability to perform a HTTP resquest so that actual support for a specific algorithm/protocol combination is valid
- Added the ability to output each valid HTTP response to an individual file (-t)
- Modified the HTTP response file writing to separate the HTTP headers from the HTML response for better display
- Modified the output display to include the first line from the HTTP response e.g. HTTP/1.1 301 Moved Permanently
- Added the ability to perform a keyword(s) match on the HTTP response (-m)
Download here.