Testssl.sh - Gwajin TLS/SSL boye-boye ko'ina akan kowace tashar jiragen ruwa

testssl.sh kyauta ce kuma tushen tushe, kayan aiki mai wadataccen tsarin umarni da aka yi amfani da shi don duba ayyukan da aka kunna ɓoyayyen TLS/SSL don goyan bayan ciphers, ka'idoji, da wasu lahani na sirri, akan sabar Linux/BSD. Ana iya gudanar da shi akan macOS X da Windows ta amfani da MSYS2 ko Cygwin.

• Mai sauƙin shigarwa da amfani; yana fitar da fitowar fili.
• Madaidaicin sassauƙa, ana iya amfani dashi don duba kunna SSL/TLS da sabis na STARTTLS.
• Yi rajista na gaba ɗaya ko cak ɗaya.
• Ya zo tare da zaɓuɓɓukan layin umarni da yawa don nau'ikan cak guda ɗaya.
• Yana goyan bayan nau'ikan fitarwa daban-daban, gami da fitarwa masu launi.
• Yana goyan bayan rajistan ID Zama SSL.
• Yana goyan bayan bincika takaddun shaida na uwar garke.
• Yana ba da cikakkiyar sirri, kai kaɗai ne za ku iya ganin sakamakon, ba wani ɓangare na uku ba.
• Yana goyan bayan shiga (lalata) tsarin JSON + CSV.
• Yana goyan bayan gwajin yawan jama'a a siriyal (default) ko a layi daya.
• Yana goyan bayan saiti na zaɓuɓɓukan layin umarni ta hanyar canjin yanayi, da ƙari.

Muhimmi: Ya kamata ku kasance kuna amfani da bash (wanda ya zo an riga an shigar dashi akan yawancin rarrabawar Linux) kuma ana ba da shawarar sabon sigar OpenSSL (1.1.1) don ingantaccen amfani.

Yadda ake Shigar da Amfani da Testssl.sh a cikin Linux

Kuna iya shigar da testssl. sh ta hanyar rufe wannan ma'ajiyar git kamar yadda aka nuna.

# git clone --depth 1 https://github.com/drwetter/testssl.sh.git
# cd testssl.sh

Bayan cloning testssl.sh, yanayin amfani na gabaɗaya tabbas shine kawai gudanar da umarni mai zuwa don yin gwaji akan gidan yanar gizo.

# ./testssl.sh https://www.google.com/

Don gudanar da bincike akan ka'idojin da aka kunna STARTTLS: ftp, smtp, pop3, imap, xmp, telnet, ldap, postgres, mysql, yi amfani da zaɓin -t.

# ./testssl.sh -t smtp https://www.google.com/

Ta hanyar tsoho, ana yin duk gwaje-gwajen da yawa a yanayin siriyal, zaku iya kunna gwajin layi ɗaya ta amfani da tutar --parallel.

# ./testssl.sh --parallel https://www.google.com/

Idan baku son amfani da tsohowar tsarin openssl, yi amfani da tutar –openssl don tantance madadin.

# ./testssl.sh --parallel --sneaky --openssl /path/to/your/openssl https://www.google.com/

Kuna iya adana rajistan ayyukan don bincike na gaba, testssl.sh yana da --log (fayil ɗin log ɗin a cikin kundin adireshi na yanzu) ko --logfile (ƙayyade wurin fayil ɗin log) ) zaɓi don haka.

# ./testssl.sh --parallel --sneaky --logging https://www.google.com/

Don kashe binciken DNS, wanda zai iya ƙara saurin gwaji, yi amfani da alamar -n.

# ./testssl.sh -n --parallel --sneaky --logging https://www.google.com/

Gudun Bincike Guda Daya Ta Amfani da testssl.sh

Hakanan zaka iya gudanar da cak guda ɗaya don ƙa'idodi, kuskuren uwar garken, zaɓin uwar garken, kanun labarai, nau'ikan lahani iri-iri da sauran gwaje-gwaje masu yawa. Akwai zaɓuɓɓuka da yawa da aka tanada don wannan.

Misali, tutar -e tana baka damar duba kowane sifar gida daga nesa. Idan kuna son yin gwajin da sauri, yi amfani da alamar -- sauri; wannan zai ƙetare wasu cak, idan kuna amfani da openssl don duk ciphers, kawai yana nuna sifa ta farko.

# ./testssl.sh -e --fast --parallel https://www.google.com/

Zaɓin -p yana ba da damar gwada ƙa'idodin TLS/SSL (ciki har da SPDY/HTTP2).

# ./testssl.sh -p --parallel --sneaky https://www.google.com/

Kuna iya duba tsoffin zaɓe da takaddun shaida ta sabar ta amfani da zaɓin -S.

# ./testssl.sh -S https://www.google.com/

Na gaba, don ganin ƙaƙƙarfan ƙa'idar+cipher na uwar garken, yi amfani da tutar -P.

# ./testssl.sh -P https://www.google.com/

Zaɓin -U zai taimaka maka gwada duk lahani (idan an zartar).

# ./testssl.sh -U --sneaky https://www.google.com/

Abin takaici, ba za mu iya yin amfani da duk zaɓuɓɓukan nan ba, yi amfani da umarnin da ke ƙasa don ganin jerin duk zaɓuɓɓuka.

# ./testssl.sh --help

Nemo ƙarin a ma'ajiyar testssl.sh Github: https://github.com/drwetter/tesssl.sh

testssl.sh kayan aikin tsaro ne mai amfani wanda kowane mai gudanar da tsarin Linux ke buƙatar samu kuma yayi amfani da shi don gwada ayyukan kunna TSL/SSL. Idan kuna da wasu tambayoyi ko tunani don raba, yi amfani da fam ɗin sharhin da ke ƙasa. Bugu da ƙari, za ku iya raba tare da mu kowane irin kayan aikin da kuka ci karo da su a can.