• Stars
    star
    197
  • Rank 197,722 (Top 4 %)
  • Language
    Perl
  • Created almost 13 years ago
  • Updated over 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

various standalone perl scripts

Collection of SSL Tools

This repository contains various tools, which are intended to debug or analyze problems related to SSL/TLS.

Analyzing state of TLS

  • analyze-ssl.pl
    • check support for various SSL/TLS version
    • check which ciphers are support
    • verfiy certificate
    • check OCSP state
    • check if SNI is supported and/or required
    • display chain certificates and also local root if certification succeeded
    • support direct connection and various form of STARTTLS
    • ...

SMTP TLS support (STARTTLS)

  • mx_starttls_bulk.pl
    • bulk checking of domains for SMTP TLS support
    • fast parallel checking with non-blocking I/O: 40..60 domains/s which includes MX lookups and several TLS connections
    • checks for common problems with TLS support in MTA
    • does not try to verify certificates, because STARTTLS itself is open to MITM attacks by stripping STARTTLS support
  • mx_starttls_bulk_summarize.pl
    • summarize data created by mx_starttls_bulk

HTTPS: Certificate Verification, OCSP ...

  • https_ocsp_bulk.pl
    • check lots of sites for certificate verification, ciphers and OCSP revocation problems
    • synchronous, i.e one site gets checked after the other

Heartbleed

  • check-ssl-heartbeat.pl
    • check for heartbleed OpenSSL vulnerability
    • supports various protocols requiring STARTTLS or similar