Saturday, July 16, 2011

Updated ssl-enum-ciphers.nse with sslenum=weak option

The original script, ssl-enum-ciphers, was modified so that it can
return only the list of known weak algorithms when specified with
sslenum=weak option.
With that option, only the known following weak ciphers will be tested.

$ nmap --script ssl-enum-ciphers --script-args sslenum=weak -p 443 <host>
@output
| ssl-enum-ciphers:
| SSLv3
| Weak Ciphers (6)
| TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
| TLS_DHE_RSA_WITH_DES_CBC_SHA
| TLS_RSA_EXPORT_WITH_DES40_CBC_SHA
| TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
| TLS_RSA_EXPORT_WITH_RC4_40_MD5
| TLS_RSA_WITH_DES_CBC_SHA
| Compressors (1)
| uncompressed
link: http://yehg.net/lab/pr0js/tools/plugins/nmap/ssl-enum-ciphers.nse