Tool and Usage
Cipherscan is a tool to test the ordering of SSL/TLS ciphers on a given target. It tests the major versions of SSL, TLS, and any extensions of these protocols.
Why this tool?
The tool is of great assistance to quickly perform a security audit and may be used during penetrating testing, or guiding system administrator for system hardening.
How it works
Cipherscan is a wrapper around the OpenSSL s_client command line utility. Therefore it requires preferably one of the later OpenSSL versions, to properly test the capabilities of a target.
Usage and audience
cipherscan is commonly used during information gathering, security assessment, system hardening, or web application analysis. Target users for this tool are auditors, pentesters, security professionals, and system administrators.
- cipherscan is written in Python, shell script
- Can run non-privileged (as normal user)
- Command line interface
- Installation of tool is optional
- JSON output supported
- + Screen output is colored
- + More than 1000 GitHub stars
- + Very low number of dependencies
- + Supported by a large company
Author and Maintainers
Support operating systems
Cipherscan is known to work on Linux.