NAME¶
sslscan - Fast SSL scanner
SYNOPSIS¶
sslscan [
options]
[host:port | host]
DESCRIPTION¶
This manual page documents briefly the
sslscan command
sslscan queries SSL services, such as HTTPS, in order to determine the
ciphers that are supported.
SSLScan is designed to be easy, lean and fast. The output includes preferred
ciphers of the SSL service,
the certificate and output is in text and XML formats.
OPTIONS¶
- --help
-
Show summary of options.
- --version
- Show version of program.
- --targets=<file>
- A file containing a list of hosts to check. Hosts can be
supplied with ports (i.e. host:port). One target per line.
- --no-failed
- List only accepted ciphers (default is to listing all
ciphers).
- --ssl2
-
Only check SSLv2 ciphers.
- --ssl3
-
Only check SSLv3 ciphers.
- --pk=<file>
- A file containing the private key or a PKCS#12 file
containing a private key/certificate pair (as produced by MSIE and
Netscape).
- --pkpass=<password>
- The password for the private key or PKCS#12 file.
- --certs=<file>
- A file containing PEM/ASN1 formatted client
certificates.
- --starttls
- Executes a STARTTLS in order to test the SSL capabilities
of an SMTP service with TLS support. This option automatically forces TLS
only ciphers, no need to specify it.
- --html
- Makes a HTML request after a successful connection and
returns the server response code.
- --bugs
- Enables workarounds for SSL bugs.
- --xml=<file>
- Output results to an XML file.
AUTHOR¶
sslscan was written by Ian Ventura-Whiting <fizz@titania.co.uk>.
This manual page was originally written by Marvin Stark
<marv@der-marv.de>.
