Skip to content

Instantly share code, notes, and snippets.

@jvehent

jvehent/cipherscan top domains

Created September 26, 2013 07:06
Show Gist options
  • Star 5 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save jvehent/6710757 to your computer and use it in GitHub Desktop.
Save jvehent/6710757 to your computer and use it in GitHub Desktop.
Download ZIP
Cipherscan of major internet websites that have HTTPS enabled. The output shows the server ciphers preferences, TLS version and PFS key size if present. https://github.com/jvehent/cipherscan
Raw
cipherscan top domains
$ for site in google.com facebook.com youtube.com yahoo.com wikipedia.org linkedin.com microsoft.com twitter.com amazon.com blogspot.com tumblr.com netflix.com mozilla.org marketplace.mozilla.com login.persona.org; do echo;echo "-- $site --"; ./CiphersScan.sh $site:443;done
-- google.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
4 AES128-GCM-SHA256 TLSv1.2
5 RC4-SHA TLSv1.2
6 RC4-MD5 TLSv1.2
7 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
8 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits
9 ECDHE-RSA-AES256-SHA TLSv1.2 ECDH,P-256,256bits
10 AES256-GCM-SHA384 TLSv1.2
11 AES256-SHA256 TLSv1.2
12 AES256-SHA TLSv1.2
13 ECDHE-RSA-DES-CBC3-SHA TLSv1.2 ECDH,P-256,256bits
14 DES-CBC3-SHA TLSv1.2
15 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits
16 AES128-SHA256 TLSv1.2
17 AES128-SHA TLSv1.2
18 (NONE)
-- facebook.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
4 ECDHE-RSA-AES256-SHA TLSv1.2 ECDH,P-256,256bits
5 AES128-GCM-SHA256 TLSv1.2
6 AES256-GCM-SHA384 TLSv1.2
7 AES128-SHA TLSv1.2
8 AES256-SHA TLSv1.2
9 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
10 RC4-SHA TLSv1.2
11 RC4-MD5 TLSv1.2
12 ECDHE-RSA-DES-CBC3-SHA TLSv1.2 ECDH,P-256,256bits
13 DES-CBC3-SHA TLSv1.2
14 (NONE)
-- youtube.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
4 AES128-GCM-SHA256 TLSv1.2
5 RC4-SHA TLSv1.2
6 RC4-MD5 TLSv1.2
7 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
8 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits
9 ECDHE-RSA-AES256-SHA TLSv1.2 ECDH,P-256,256bits
10 AES256-GCM-SHA384 TLSv1.2
11 AES256-SHA256 TLSv1.2
12 AES256-SHA TLSv1.2
13 ECDHE-RSA-DES-CBC3-SHA TLSv1.2 ECDH,P-256,256bits
14 DES-CBC3-SHA TLSv1.2
15 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits
16 AES128-SHA256 TLSv1.2
17 AES128-SHA TLSv1.2
18 (NONE)
-- yahoo.com --
prio ciphersuite protocol pfs_keysize
1 AES256-SHA TLSv1
2 CAMELLIA256-SHA TLSv1
3 DES-CBC3-SHA TLSv1
4 AES128-SHA TLSv1
5 SEED-SHA TLSv1
6 CAMELLIA128-SHA TLSv1
7 RC4-SHA TLSv1
8 RC4-MD5 TLSv1
9 (NONE)
-- wikipedia.org --
prio ciphersuite protocol pfs_keysize
1 AES128-GCM-SHA256 TLSv1.2
2 RC4-SHA TLSv1.2
3 RC4-MD5 TLSv1.2
4 AES128-SHA TLSv1.2
5 AES256-SHA TLSv1.2
6 (NONE)
-- linkedin.com --
prio ciphersuite protocol pfs_keysize
1 RC4-MD5 TLSv1
2 RC4-SHA TLSv1
3 DES-CBC3-SHA TLSv1
4 AES256-SHA TLSv1
5 AES128-SHA TLSv1
6 (NONE)
-- microsoft.com --
prio ciphersuite protocol pfs_keysize
1 AES128-SHA TLSv1
2 AES256-SHA TLSv1
3 RC4-SHA TLSv1
4 DES-CBC3-SHA TLSv1
5 ECDHE-RSA-AES256-SHA TLSv1 ECDH,P-384,384bits
6 ECDHE-RSA-AES128-SHA TLSv1 ECDH,P-384,384bits
7 RC4-MD5 TLSv1
8 (NONE)
-- twitter.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
3 RC4-SHA TLSv1.2
4 RC4-MD5 TLSv1.2
5 AES128-SHA TLSv1.2
6 AES256-SHA TLSv1.2
7 DES-CBC3-SHA TLSv1.2
8 (NONE)
-- amazon.com --
prio ciphersuite protocol pfs_keysize
1 RC4-SHA TLSv1
2 RC4-MD5 TLSv1
3 ECDHE-RSA-AES128-SHA TLSv1 ECDH,P-256,256bits
4 ECDHE-RSA-AES256-SHA TLSv1 ECDH,P-256,256bits
5 AES128-SHA TLSv1
6 AES256-SHA TLSv1
7 DHE-RSA-AES256-SHA TLSv1 DH,1024bits
8 DHE-RSA-AES128-SHA TLSv1 DH,1024bits
9 EDH-RSA-DES-CBC3-SHA TLSv1 DH,1024bits
10 DES-CBC3-SHA TLSv1
11 (NONE)
-- blogspot.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
4 AES128-GCM-SHA256 TLSv1.2
5 RC4-SHA TLSv1.2
6 RC4-MD5 TLSv1.2
7 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
8 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits
9 ECDHE-RSA-AES256-SHA TLSv1.2 ECDH,P-256,256bits
10 AES256-GCM-SHA384 TLSv1.2
11 AES256-SHA256 TLSv1.2
12 AES256-SHA TLSv1.2
13 ECDHE-RSA-DES-CBC3-SHA TLSv1.2 ECDH,P-256,256bits
14 DES-CBC3-SHA TLSv1.2
15 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits
16 AES128-SHA256 TLSv1.2
17 AES128-SHA TLSv1.2
18 (NONE)
-- tumblr.com --
prio ciphersuite protocol pfs_keysize
1 ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 ECDH,P-256,256bits
2 ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 ECDH,P-256,256bits
3 ECDHE-RSA-RC4-SHA TLSv1.2 ECDH,P-256,256bits
4 DHE-RSA-AES256-GCM-SHA384 TLSv1.2 DH,1024bits
5 DHE-RSA-AES256-SHA256 TLSv1.2 DH,1024bits
6 DHE-RSA-AES256-SHA TLSv1.2 DH,1024bits
7 DHE-RSA-CAMELLIA256-SHA TLSv1.2 DH,1024bits
8 DHE-RSA-AES128-GCM-SHA256 TLSv1.2 DH,1024bits
9 DHE-RSA-AES128-SHA256 TLSv1.2 DH,1024bits
10 DHE-RSA-AES128-SHA TLSv1.2 DH,1024bits
11 DHE-RSA-SEED-SHA TLSv1.2 DH,1024bits
12 DHE-RSA-CAMELLIA128-SHA TLSv1.2 DH,1024bits
13 ECDHE-RSA-AES256-SHA384 TLSv1.2 ECDH,P-256,256bits
14 ECDHE-RSA-AES256-SHA TLSv1.2 ECDH,P-256,256bits
15 RC4-SHA TLSv1.2
16 ECDHE-RSA-AES128-SHA256 TLSv1.2 ECDH,P-256,256bits
17 ECDHE-RSA-AES128-SHA TLSv1.2 ECDH,P-256,256bits
18 (NONE)
-- netflix.com --
prio ciphersuite protocol pfs_keysize
1 RC4-MD5 TLSv1
2 RC4-SHA TLSv1
3 DES-CBC3-SHA TLSv1
4 AES256-SHA TLSv1
5 AES128-SHA TLSv1
6 (NONE)
-- mozilla.org --
prio ciphersuite protocol pfs_keysize
1 RC4-SHA TLSv1.1
2 RC4-MD5 TLSv1.1
3 AES256-SHA TLSv1.1
4 DHE-RSA-AES256-SHA TLSv1.1 DH,1024bits
5 DES-CBC3-SHA TLSv1.1
6 EDH-RSA-DES-CBC3-SHA TLSv1.1 DH,1024bits
7 AES128-SHA TLSv1.1
8 DHE-RSA-AES128-SHA TLSv1.1 DH,1024bits
9 (NONE)
-- marketplace.mozilla.com --
prio ciphersuite protocol pfs_keysize
1 RC4-SHA TLSv1.1
2 RC4-MD5 TLSv1.1
3 AES256-SHA TLSv1.1
4 DHE-RSA-AES256-SHA TLSv1.1 DH,1024bits
5 DES-CBC3-SHA TLSv1.1
6 EDH-RSA-DES-CBC3-SHA TLSv1.1 DH,1024bits
7 AES128-SHA TLSv1.1
8 DHE-RSA-AES128-SHA TLSv1.1 DH,1024bits
9 (NONE)
-- login.persona.org --
prio ciphersuite protocol pfs_keysize
1 DHE-RSA-AES256-SHA TLSv1 DH,1024bits
2 AES256-SHA TLSv1
3 CAMELLIA256-SHA TLSv1
4 DHE-RSA-AES128-SHA TLSv1 DH,1024bits
5 AES128-SHA TLSv1
6 CAMELLIA128-SHA TLSv1
7 RC4-SHA TLSv1
8 (NONE)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment