tls-webserver-configuration-scanner

module

v0.0.0-...-e4757b4 Latest Latest Go to latest Published: Jan 25, 2021 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/stanford-esrg/tls-webserver-configuration-scanner

Links

Open Source Insights

README ¶

TLS Webserver Configuration Scanner

This repo contains TLS Webserver Configuration Scanner implementation under zgrab2 modules Default.

Building

You will need to have a valid $GOPATH set up, for more information about $GOPATH, see https://golang.org/doc/code.html.

Once you have a working $GOPATH, run:

$ go version
go version go1.12.6 linux/amd6

Verify that you have the correct version of go installed.

$ git clone git@github.com:stanford-esrg/tls-webserver-configuration-scanner.git
$ cd tls-webserver-configuration-scanner
$ go get github.com/zmap/zgrab2
$ rm -rf $GOPATH/src/github.com/zmap/zcrypto/ $GOPATH/src/github.com/zmap/zgrab2/
$ cp -r zcrypto/ zgrab2/ $GOPATH/src/github.com/zmap/
$ go get github.com/dadrian/go-idea github.com/dadrian/rc2 golang.org/x/crypto/curve25519 golang.org/x/crypto/ed25519 golang.org/x/crypto/md4 golang.org/x/net/http/httpguts golang.org/x/net/http/httpproxy golang.org/x/net/http2/hpack golang.org/x/net/idna golang.org/x/text/unicode/norm golang.org/x/text/width gopkg.in/mgo.v2/bson golang.org/x/crypto/chacha20poly1305
$ cd $GOPATH/src/github.com/zmap/zgrab2
$ make clean && make

To run the scanner with X number of senders, with a uniform randomized start delay less than Y seconds, and Z second delay between handshakes per sender.

cat list | zgrab2 defaults --senders=X --start-delay=Y --handshake-delay=Z > output.json

The input list is a newline deliminated file with each line in this form: [IPv4],[domain] (for example 1.2.3.4,test.com). The output is a newline deliminated json file.

Directories ¶

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL

Path	Synopsis
zgrab2
cmd/zgrab2
lib/defaults
lib/http Package http provides HTTP client and server implementations.	Package http provides HTTP client and server implementations.
lib/http/cookiejar Package cookiejar implements an in-memory RFC 6265-compliant http.CookieJar.	Package cookiejar implements an in-memory RFC 6265-compliant http.CookieJar.
lib/http/httptest Package httptest provides utilities for HTTP testing.	Package httptest provides utilities for HTTP testing.
lib/http/httptrace Package httptrace provides mechanisms to trace the events within HTTP client requests.	Package httptrace provides mechanisms to trace the events within HTTP client requests.
lib/http/httputil
lib/http/nettrace
lib/http2 Package http2 implements the HTTP/2 protocol.	Package http2 implements the HTTP/2 protocol.
lib/http2/h2c Package h2c implements the unencrypted "h2c" form of HTTP/2.	Package h2c implements the unencrypted "h2c" form of HTTP/2.
lib/http2/h2i The h2i command is an interactive HTTP/2 console.	The h2i command is an interactive HTTP/2 console.
lib/http2/hpack Package hpack implements HPACK, a compression format for efficiently representing HTTP header fields in the context of HTTP/2.	Package hpack implements HPACK, a compression format for efficiently representing HTTP header fields in the context of HTTP/2.
lib/modern_http Package http provides HTTP client and server implementations.	Package http provides HTTP client and server implementations.
lib/modern_http/cgi Package cgi implements CGI (Common Gateway Interface) as specified in RFC 3875.	Package cgi implements CGI (Common Gateway Interface) as specified in RFC 3875.
lib/modern_http/cookiejar Package cookiejar implements an in-memory RFC 6265-compliant http.CookieJar.	Package cookiejar implements an in-memory RFC 6265-compliant http.CookieJar.
lib/modern_http/fcgi Package fcgi implements the FastCGI protocol.	Package fcgi implements the FastCGI protocol.
lib/modern_http/httptest Package httptest provides utilities for HTTP testing.	Package httptest provides utilities for HTTP testing.
lib/modern_http/httptrace Package httptrace provides mechanisms to trace the events within HTTP client requests.	Package httptrace provides mechanisms to trace the events within HTTP client requests.
lib/modern_http/httputil Package httputil provides HTTP utility functions, complementing the more common ones in the net/http package.	Package httputil provides HTTP utility functions, complementing the more common ones in the net/http package.
lib/modern_http/internal Package internal contains HTTP internals shared by net/http and net/http/httputil.	Package internal contains HTTP internals shared by net/http and net/http/httputil.
lib/modern_http/pprof Package pprof serves via its HTTP server runtime profiling data in the format expected by the pprof visualization tool.	Package pprof serves via its HTTP server runtime profiling data in the format expected by the pprof visualization tool.
lib/mysql Package mysql is a very basic MySQL connection library.	Package mysql is a very basic MySQL connection library.
lib/nettrace Package nettrace contains internal hooks for tracing activity in the net package.	Package nettrace contains internal hooks for tracing activity in the net package.
lib/output Package output contains utilities for processing results from zgrab2 scanners for eventual output and consumption by ztag.	Package output contains utilities for processing results from zgrab2 scanners for eventual output and consumption by ztag.
lib/smb/gss
lib/smb/ntlmssp
lib/smb/smb
lib/smb/smb/encoder
lib/ssh Package ssh implements an SSH client and server.	Package ssh implements an SSH client and server.
lib/ssh/agent Package agent implements the ssh-agent protocol, and provides both a client and a server.	Package agent implements the ssh-agent protocol, and provides both a client and a server.
lib/ssh/terminal Package terminal provides support functions for dealing with terminals, as commonly found on UNIX systems.	Package terminal provides support functions for dealing with terminals, as commonly found on UNIX systems.
lib/ssh/test This package contains integration tests for the github.com/zmap/zgrab2/lib/ssh.	This package contains integration tests for the github.com/zmap/zgrab2/lib/ssh.
lib/sslv2
lib/sslv2/keys
lib/sslv2/x509 Package x509 parses X.509-encoded keys and certificates.	Package x509 parses X.509-encoded keys and certificates.
lib/sslv2/x509/pkix Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.	Package pkix contains shared, low level structures used for ASN.1 parsing and serialization of X.509 certificates, CRL and OCSP.
lib/sslv2/zlog
modules
modules/bacnet Package bacnet provides a zgrab2 module that scans for bacnet.	Package bacnet provides a zgrab2 module that scans for bacnet.
modules/dnp3 Package dnp3 provides a zgrab2 module that scans for dnp3.	Package dnp3 provides a zgrab2 module that scans for dnp3.
modules/fox Package fox provides a zgrab2 module that scans for fox.	Package fox provides a zgrab2 module that scans for fox.
modules/ftp Package ftp contains the zgrab2 Module implementation for FTP(S).	Package ftp contains the zgrab2 Module implementation for FTP(S).
modules/http Package http contains the zgrab2 Module implementation for HTTP(S).	Package http contains the zgrab2 Module implementation for HTTP(S).
modules/imap Package imap provides a zgrab2 module that scans for IMAP mail servers.	Package imap provides a zgrab2 module that scans for IMAP mail servers.
modules/ipp Package ipp provides a zgrab2 module that scans for ipp.	Package ipp provides a zgrab2 module that scans for ipp.
modules/modbus Package modbus provides a zgrab2 module that scans for modbus.	Package modbus provides a zgrab2 module that scans for modbus.
modules/mongodb
modules/mssql Package mssql provides the zgrab2 scanner module for the MSSQL protocol.	Package mssql provides the zgrab2 scanner module for the MSSQL protocol.
modules/mysql Package mysql provides the mysql implementation of the zgrab2.Module.	Package mysql provides the mysql implementation of the zgrab2.Module.
modules/ntp Package ntp provides a zgrab2 module that probes for the NTP service.	Package ntp provides a zgrab2 module that probes for the NTP service.
modules/oracle Package oracle provides the zgrab2 scanner module for Oracle's TNS protocol.	Package oracle provides the zgrab2 scanner module for Oracle's TNS protocol.
modules/pop3 Package pop3 provides a zgrab2 module that scans for POP3 mail servers.	Package pop3 provides a zgrab2 module that scans for POP3 mail servers.
modules/postgres Package postgres contains the postgres zgrab2 Module implementation.	Package postgres contains the postgres zgrab2 Module implementation.
modules/redis Package redis provides a zgrab2 Module that probes for redis services.	Package redis provides a zgrab2 Module that probes for redis services.
modules/siemens Package siemens provides a zgrab2 module that scans for Siemens S7.	Package siemens provides a zgrab2 module that scans for Siemens S7.
modules/smb Package smb provides a zgrab2 module that scans for smb.	Package smb provides a zgrab2 module that scans for smb.
modules/smtp Package smtp provides a zgrab2 module that scans for SMTP mail servers.	Package smtp provides a zgrab2 module that scans for SMTP mail servers.
modules/telnet Package telnet provides a zgrab2 module that scans for telnet daemons.	Package telnet provides a zgrab2 module that scans for telnet daemons.
tools/keys