Created
January 19, 2016 05:34
-
-
Save DuaneNielsen/85ef9796ad22904a861b to your computer and use it in GitHub Desktop.
check the supported ciphers on an ssl connection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # OpenSSL requires the port number. | |
| SERVER=0.0.0.0:8080 | |
| DELAY=1 | |
| ciphers=$(openssl ciphers 'ALL:eNULL' | sed -e 's/:/ /g') | |
| echo Obtaining cipher list from $(openssl version). | |
| for cipher in ${ciphers[@]} | |
| do | |
| echo -n Testing $cipher... | |
| result=$(echo -n | openssl s_client -cipher "$cipher" -connect $SERVER 2>&1) | |
| if [[ "$result" =~ ":error:" ]] ; then | |
| error=$(echo -n $result | cut -d':' -f6) | |
| echo NO \($error\) | |
| else | |
| if [[ "$result" =~ "Cipher is ${cipher}" || "$result" =~ "Cipher :" ]] ; then | |
| echo YES | |
| else | |
| echo UNKNOWN RESPONSE | |
| echo $result | |
| fi | |
| fi | |
| sleep $DELAY | |
| done |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
change the IP and PORT in the script to target the one you are after