-
-
Save zinid/9c716db24c4c579596dc0cb96f74ac46 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ nmap --script ssl-enum-ciphers -p 5223 jabber.ru | |
| Starting Nmap 7.70 ( https://nmap.org ) at 2019-08-09 11:28 MSK | |
| Nmap scan report for jabber.ru (172.104.234.182) | |
| Host is up (0.075s latency). | |
| Other addresses for jabber.ru (not scanned): 172.104.226.29 | |
| rDNS record for 172.104.234.182: dusk.jabber.ru | |
| PORT STATE SERVICE | |
| 5223/tcp open hpvirtgrp | |
| | ssl-enum-ciphers: | |
| | TLSv1.0: | |
| | ciphers: | |
| | TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 4096) - C | |
| | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 4096) - A | |
| | TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C | |
| | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | |
| | TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 4096) - C | |
| | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 4096) - A | |
| | compressors: | |
| | NULL | |
| | cipher preference: client | |
| | warnings: | |
| | 64-bit block cipher 3DES vulnerable to SWEET32 attack | |
| | Key exchange (secp256r1) of lower strength than certificate key | |
| | TLSv1.1: | |
| | ciphers: | |
| | TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 4096) - C | |
| | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 4096) - A | |
| | TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C | |
| | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | |
| | TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 4096) - C | |
| | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 4096) - A | |
| | compressors: | |
| | NULL | |
| | cipher preference: client | |
| | warnings: | |
| | 64-bit block cipher 3DES vulnerable to SWEET32 attack | |
| | Key exchange (secp256r1) of lower strength than certificate key | |
| | TLSv1.2: | |
| | ciphers: | |
| | TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (dh 4096) - C | |
| | TLS_DHE_RSA_WITH_AES_128_CBC_SHA (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_256_CBC_SHA (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (dh 4096) - A | |
| | TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (dh 4096) - A | |
| | TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (secp256r1) - C | |
| | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (secp256r1) - A | |
| | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) - A | |
| | TLS_RSA_WITH_3DES_EDE_CBC_SHA (rsa 4096) - C | |
| | TLS_RSA_WITH_AES_128_CBC_SHA (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_128_CBC_SHA256 (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_256_CBC_SHA (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_256_CBC_SHA256 (rsa 4096) - A | |
| | TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 4096) - A | |
| | compressors: | |
| | NULL | |
| | cipher preference: client | |
| | warnings: | |
| | 64-bit block cipher 3DES vulnerable to SWEET32 attack | |
| | Key exchange (secp256r1) of lower strength than certificate key | |
| |_ least strength: C | |
| Nmap done: 1 IP address (1 host up) scanned in 7.34 seconds |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment