Get SSL information from a website using sslscan.

Posted: January 11, 2016. At: 10:50 AM. This was 2 years ago. Post ID: 8653
Page permalink.
WordPress uses cookies, or tiny pieces of information stored on your computer, to verify who you are. There are cookies for logged in users and for commenters. These cookies expire two weeks after they are set.

The sslscan command for the Kali Linux penetration testing distribution is very useful for gaining an insight into the SSL configuration of a web site.

Here is example usage on healthcare.gov…

[email protected]:~# sslscan healthcare.gov
Version: 1.10.5-static
OpenSSL 1.0.2e-dev xx XXX xxxx
 
Testing SSL server healthcare.gov on port 443
 
  TLS renegotiation:
Secure session renegotiation supported
 
  TLS Compression:
Compression disabled
 
  Heartbleed:
TLS 1.0 not vulnerable to heartbleed
TLS 1.1 not vulnerable to heartbleed
TLS 1.2 not vulnerable to heartbleed
 
  Supported Server Cipher(s):
Accepted  TLSv1.0  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.0  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.0  128 bits  AES128-SHA                   
Accepted  TLSv1.0  112 bits  DES-CBC3-SHA                 
Accepted  TLSv1.1  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.1  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.1  128 bits  AES128-SHA                   
Accepted  TLSv1.1  112 bits  DES-CBC3-SHA                 
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-GCM-SHA384   Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-SHA384       Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  AES256-GCM-SHA384            
Accepted  TLSv1.2  256 bits  AES256-SHA256                
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-GCM-SHA256   Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-SHA256       Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  AES128-GCM-SHA256            
Accepted  TLSv1.2  128 bits  AES128-SHA256                
Accepted  TLSv1.2  128 bits  AES128-SHA                   
Accepted  TLSv1.2  112 bits  DES-CBC3-SHA                 
 
  Preferred Server Cipher(s):
TLSv1.0  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
TLSv1.1  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
TLSv1.2  256 bits  ECDHE-RSA-AES256-GCM-SHA384   Curve P-256 DHE 256
 
  SSL Certificate:
Signature Algorithm: sha256WithRSAEncryption
RSA Key Strength:    2048
 
Subject:  www.healthcare.gov
Altnames: DNS:aca.api.healthcare.gov, DNS:cciio.cms.gov, DNS:eidm.cms.gov, DNS:styleguide.healthcare.gov, DNS:reminder.healthcare.gov, DNS:geo.api.healthcare.gov, DNS:ahrcvo.cms.gov, DNS:calt.cms.gov, DNS:portal.cms.gov, DNS:confluence.cms.gov, DNS:maps.cms.gov, DNS:cicd.cms.gov, DNS:tmdsmdr.aws.healthcare.gov, DNS:www.errp.gov, DNS:assets.cms.gov, DNS:ci.cms.gov, DNS:downloads.cms.gov, DNS:partnershippledge.healthcare.gov, DNS:www.hospitalcompare.hhs.gov, DNS:marketplace.api.healthcare.gov, DNS:ratereview.healthcare.gov, DNS:wr.healthcare.gov, DNS:login.healthcare.gov, DNS:marketplace-int.api.healthcare.gov, DNS:monitor.healthcare.gov, DNS:www.cciio.cms.gov, DNS:ayudalocal.cuidadodesalud.gov, DNS:api.healthcare.gov, DNS:assets.healthcare.gov, DNS:www.stopmedicarefraud.gov, DNS:signup.healthcare.gov, DNS:billing.healthcare.gov, DNS:prodprime.cuidadodesalud.gov, DNS:splunk.cms.gov, DNS:localhelp.healthcare.gov, DNS:tmdsm.aws.healthcare.gov, DNS:hfpp.cms.gov, DNS:jira.cms.gov, DNS:stopmedicarefraud.gov, DNS:errp.gov, DNS:companyprofile.healthcare.gov, DNS:crowd.cms.gov, DNS:healthcare.gov, DNS:finder.healthcare.gov, DNS:marketplace.cms.gov, DNS:companyprofiles.healthcare.gov, DNS:nagios.healthcare.gov, DNS:ahrc.cms.gov, DNS:search.healthcare.gov, DNS:openpaymentsdata.cms.gov, DNS:prodprime.healthcare.gov, DNS:scclia.cms.gov, DNS:vpn.aws.healthcare.gov, DNS:hipchat.cms.gov, DNS:splunk.healthcare.gov, DNS:data.healthcare.gov, DNS:cuidadodesalud.gov, DNS:status.healthcare.gov, DNS:developer.cms.gov, DNS:eap.cms.gov, DNS:pcip.gov, DNS:github.cms.gov, DNS:api.finder.healthcare.gov, DNS:hospitalcompare.hhs.gov, DNS:go.healthcare.gov, DNS:search.stopmedicarefraud.gov, DNS:www.pcip.gov, DNS:www.cuidadodesalud.gov, DNS:www.healthcare.gov
Issuer:   GeoTrust SSL CA - G3

This shows some comprehensive information about the website SSL configuration.

To test only TLS ciphers, use this command line parameter.

[email protected]:~# sslscan --tlsall healthcare.gov
Version: 1.10.5-static
OpenSSL 1.0.2e-dev xx XXX xxxx
 
Testing SSL server healthcare.gov on port 443
 
  TLS renegotiation:
Secure session renegotiation supported
 
  TLS Compression:
Compression disabled
 
  Heartbleed:
TLS 1.0 not vulnerable to heartbleed
TLS 1.1 not vulnerable to heartbleed
TLS 1.2 not vulnerable to heartbleed
 
  Supported Server Cipher(s):
Accepted  TLSv1.0  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.0  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.0  128 bits  AES128-SHA                   
Accepted  TLSv1.0  112 bits  DES-CBC3-SHA                 
Accepted  TLSv1.1  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.1  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.1  128 bits  AES128-SHA                   
Accepted  TLSv1.1  112 bits  DES-CBC3-SHA                 
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-GCM-SHA384   Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-SHA384       Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
Accepted  TLSv1.2  256 bits  AES256-GCM-SHA384            
Accepted  TLSv1.2  256 bits  AES256-SHA256                
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-GCM-SHA256   Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-SHA256       Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  ECDHE-RSA-AES128-SHA          Curve P-256 DHE 256
Accepted  TLSv1.2  128 bits  AES128-GCM-SHA256            
Accepted  TLSv1.2  128 bits  AES128-SHA256                
Accepted  TLSv1.2  128 bits  AES128-SHA                   
Accepted  TLSv1.2  112 bits  DES-CBC3-SHA                 
 
  Preferred Server Cipher(s):
TLSv1.0  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
TLSv1.1  256 bits  ECDHE-RSA-AES256-SHA          Curve P-256 DHE 256
TLSv1.2  256 bits  ECDHE-RSA-AES256-GCM-SHA384   Curve P-256 DHE 256
 
  SSL Certificate:
Signature Algorithm: sha256WithRSAEncryption
RSA Key Strength:    2048
 
Subject:  www.healthcare.gov
Altnames: DNS:aca.api.healthcare.gov, DNS:cciio.cms.gov, DNS:eidm.cms.gov, DNS:styleguide.healthcare.gov, DNS:reminder.healthcare.gov, DNS:geo.api.healthcare.gov, DNS:ahrcvo.cms.gov, DNS:calt.cms.gov, DNS:portal.cms.gov, DNS:confluence.cms.gov, DNS:maps.cms.gov, DNS:cicd.cms.gov, DNS:tmdsmdr.aws.healthcare.gov, DNS:www.errp.gov, DNS:assets.cms.gov, DNS:ci.cms.gov, DNS:downloads.cms.gov, DNS:partnershippledge.healthcare.gov, DNS:www.hospitalcompare.hhs.gov, DNS:marketplace.api.healthcare.gov, DNS:ratereview.healthcare.gov, DNS:wr.healthcare.gov, DNS:login.healthcare.gov, DNS:marketplace-int.api.healthcare.gov, DNS:monitor.healthcare.gov, DNS:www.cciio.cms.gov, DNS:ayudalocal.cuidadodesalud.gov, DNS:api.healthcare.gov, DNS:assets.healthcare.gov, DNS:www.stopmedicarefraud.gov, DNS:signup.healthcare.gov, DNS:billing.healthcare.gov, DNS:prodprime.cuidadodesalud.gov, DNS:splunk.cms.gov, DNS:localhelp.healthcare.gov, DNS:tmdsm.aws.healthcare.gov, DNS:hfpp.cms.gov, DNS:jira.cms.gov, DNS:stopmedicarefraud.gov, DNS:errp.gov, DNS:companyprofile.healthcare.gov, DNS:crowd.cms.gov, DNS:healthcare.gov, DNS:finder.healthcare.gov, DNS:marketplace.cms.gov, DNS:companyprofiles.healthcare.gov, DNS:nagios.healthcare.gov, DNS:ahrc.cms.gov, DNS:search.healthcare.gov, DNS:openpaymentsdata.cms.gov, DNS:prodprime.healthcare.gov, DNS:scclia.cms.gov, DNS:vpn.aws.healthcare.gov, DNS:hipchat.cms.gov, DNS:splunk.healthcare.gov, DNS:data.healthcare.gov, DNS:cuidadodesalud.gov, DNS:status.healthcare.gov, DNS:developer.cms.gov, DNS:eap.cms.gov, DNS:pcip.gov, DNS:github.cms.gov, DNS:api.finder.healthcare.gov, DNS:hospitalcompare.hhs.gov, DNS:go.healthcare.gov, DNS:search.stopmedicarefraud.gov, DNS:www.pcip.gov, DNS:www.cuidadodesalud.gov, DNS:www.healthcare.gov
Issuer:   GeoTrust SSL CA - G3

To ask for an OCSP Stapling Request, use this command.

[email protected]:~# sslscan --ocsp healthcare.gov

With the –ssl3 parameter, the user can check just for the sslv3 implementation.

[email protected]:~# sslscan --ssl3 healthcare.gov
Version: 1.10.5-static
OpenSSL 1.0.2e-dev xx XXX xxxx
 
Testing SSL server healthcare.gov on port 443
 
  TLS renegotiation:
Secure session renegotiation supported
 
  TLS Compression:
Compression disabled
 
  Heartbleed:
All TLS protocols disabled, cannot check for heartbleed.
 
  Supported Server Cipher(s):
 
  Preferred Server Cipher(s):
 
  SSL Certificate:
Signature Algorithm: sha256WithRSAEncryption
RSA Key Strength:    2048
 
Subject:  www.healthcare.gov
Altnames: DNS:aca.api.healthcare.gov, DNS:cciio.cms.gov, DNS:eidm.cms.gov, DNS:styleguide.healthcare.gov, DNS:reminder.healthcare.gov, DNS:geo.api.healthcare.gov, DNS:ahrcvo.cms.gov, DNS:calt.cms.gov, DNS:portal.cms.gov, DNS:confluence.cms.gov, DNS:maps.cms.gov, DNS:cicd.cms.gov, DNS:tmdsmdr.aws.healthcare.gov, DNS:www.errp.gov, DNS:assets.cms.gov, DNS:ci.cms.gov, DNS:downloads.cms.gov, DNS:partnershippledge.healthcare.gov, DNS:www.hospitalcompare.hhs.gov, DNS:marketplace.api.healthcare.gov, DNS:ratereview.healthcare.gov, DNS:wr.healthcare.gov, DNS:login.healthcare.gov, DNS:marketplace-int.api.healthcare.gov, DNS:monitor.healthcare.gov, DNS:www.cciio.cms.gov, DNS:ayudalocal.cuidadodesalud.gov, DNS:api.healthcare.gov, DNS:assets.healthcare.gov, DNS:www.stopmedicarefraud.gov, DNS:signup.healthcare.gov, DNS:billing.healthcare.gov, DNS:prodprime.cuidadodesalud.gov, DNS:splunk.cms.gov, DNS:localhelp.healthcare.gov, DNS:tmdsm.aws.healthcare.gov, DNS:hfpp.cms.gov, DNS:jira.cms.gov, DNS:stopmedicarefraud.gov, DNS:errp.gov, DNS:companyprofile.healthcare.gov, DNS:crowd.cms.gov, DNS:healthcare.gov, DNS:finder.healthcare.gov, DNS:marketplace.cms.gov, DNS:companyprofiles.healthcare.gov, DNS:nagios.healthcare.gov, DNS:ahrc.cms.gov, DNS:search.healthcare.gov, DNS:openpaymentsdata.cms.gov, DNS:prodprime.healthcare.gov, DNS:scclia.cms.gov, DNS:vpn.aws.healthcare.gov, DNS:hipchat.cms.gov, DNS:splunk.healthcare.gov, DNS:data.healthcare.gov, DNS:cuidadodesalud.gov, DNS:status.healthcare.gov, DNS:developer.cms.gov, DNS:eap.cms.gov, DNS:pcip.gov, DNS:github.cms.gov, DNS:api.finder.healthcare.gov, DNS:hospitalcompare.hhs.gov, DNS:go.healthcare.gov, DNS:search.stopmedicarefraud.gov, DNS:www.pcip.gov, DNS:www.cuidadodesalud.gov, DNS:www.healthcare.gov
Issuer:   GeoTrust SSL CA - G3

Type man sslscan for more information.

No comments have been made. Use this form to start the conversation :)

Leave a Reply