Product
Introducing License Enforcement in Socket
Ensure open-source compliance with Socket’s License Enforcement Beta. Set up your License Policy and secure your software!
pySSLScan is a framework to scan SSL enabled services, in order to determine the supported ciphers, preferred ciphers, certificate information and more. It is designed to be flexible, lean and fast.
It can be used as a library in other software projects and provides a command-line tool to get started.
You can find more information in the documentation
_.
Query SSL services
Supported cryptographic protocols:
Supported Protocols:
IPv4 and IPv6
Scan modules:
Supported ciphers
Ciphers preferred
Supported compression methods
Supported elliptic curves
Test support for Signaling Cipher Suite Value (SCSV)
Extract EC Point Formats
Server certificate (requires pyOpenSSL)
Test renegotiation (requires pyOpenSSL)
Detect vulnerabilities
Extract server information: HTTP, IMAP, POP3 and SMTP
Rule based result highlighting
Output formats:
Requirements:
Python 2.7 or Python >= 3.2
Python packages:
Python packages(optional):
Install:
At the time of writing pySSLScan requires the development version of the cryptography packages. Use the source directly from the git repository. https://github.com/pyca/cryptography
.. code-block:: console
$ pip install sslscan
To scan a HTTPS service:
.. code-block:: console
$ pysslscan scan --scan=protocol.http --scan=vuln.heartbleed --scan=server.renegotiation \
--scan=server.preferred_ciphers --scan=server.ciphers \
--report=term:rating=ssllabs.2009e --ssl2 --ssl3 --tls10 --tls11 --tls12 http://example.org
To display more information:
.. code-block:: console
$ pysslscan --help
Published under the LGPLv3+ (see LICENSE for more information)
.. _documentation
: http://pysslscan.readthedocs.org/
FAQs
Framework and command-line tool to scan SSL enabled services
We found that sslscan demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Ensure open-source compliance with Socket’s License Enforcement Beta. Set up your License Policy and secure your software!
Product
We're launching a new set of license analysis and compliance features for analyzing, managing, and complying with licenses across a range of supported languages and ecosystems.
Product
We're excited to introduce Socket Optimize, a powerful CLI command to secure open source dependencies with tested, optimized package overrides.