Skip to content
O-Saft - OWASP SSL audit for testers
Perl Tcl Shell Other
Latest commit cec935a Jul 1, 2016 @EnDe EnDe formal changes
Failed to load latest commit information.
Net
OSaft
contrib more settings added Jun 30, 2016
.o-saft.pl
.perlcriticrc
CHANGES changes added Mar 31, 2016
INSTALL-devel.sh
LICENSE.md
README VERSION 15.12.15 Dec 16, 2015
checkAllCiphers.pl
generate_ciphers_hash
o-saft-README
o-saft-dbx.pm use %dbx instead of %org and @dbx... May 15, 2016
o-saft-man.pm
o-saft-usr.pm
o-saft.pl
o-saft.pod
o-saft.tcl
o-saft.tgz
o-saft_bench
o-saft_check_before_install.sh
openssl_h-to-perl_hash
osaft.pm

README

 /~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-.
                                                          Version: 15.12.15  )
        O-Saft  - OWASP SSL advanced forensic tool                          (
	                                                                     )
 /~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-/
(
 )  DESCRIPTION
(       This tools lists  information about remote target's  SSL  certificate
 )      and tests the remote target according given list of ciphers.
(
 )  UNIQUE FEATURES
(   ===============
 )  ### * working in closed environments, i.e. without internet connection
(   ### * checking availability of ciphers independent of installed library
 )  ### * checking for all possible ciphers (up to 65535 per SSL protocol)
(   ### * needs just perl without modules for checking ciphers and protocols
 )  ### * mainly same results on all platforms
(
 )  WHY?
(       Why a new tool for checking SSL  when there already exist a dozens or
 )      more good tools in 2012? Some (but not all) reasons are:
(       * lack of tests of unusual ciphers
 )      * different results returned for the same check on same target
(       * missing functionality (checks) according modern SSL/TLS
 )      * lack of tests of unusual (SSL, certificate) configurations
(       * (mainly) missing feasability to add own tests
 )
(       For more details, please use
 )        o-saft.pl --help
(       or read the source ;-)
 )
(   TARGET AUDIENCE
 )      * penetration testers
(       * administrators
 )
(   INSTALLATION
 )       o-saft.pl requires following Perl modules:
(          Net::SSLeay          (prefered >= 1.51)
 )         IO::Socket::SSL      (prefered >= 1.37)
(          IO::Socket::INET     (prefered >= 1.31)
 )         Net::DNS             (for --mx option only)
(
 )
(       There're no dependencies to other perl modules for checkAllCiphers.pl
 )      so the test of all ciphers (aka +cipherall) will work with it.
(       The modules Net::SSLinfo, Net::SSLhello are part of O-Saft and should
 )      be installed in ./Net .
(       All dependencies for these modules must also be installed.
 )
(       Following files are optional:
 )          .o-saft.pl           (private user configuration)
(           o-saft-dbx.pm        (for debugging, tracing)
 )          o-saft-man.pm        (documentation and generation functions)
(           o-saft-usr.pm        (private functions, some kind of API)
 )          checkAllCiphers.pl   (simple script for +cipherall option)
(
 )      .o-saft.pl is delivered as .o-saft.pl.sample to avoid destroying user
(       configurations. It needs to be renamed before used.
 )
(       o-saft.pl  reads  o-saft-README  if possible and exits.
 )      o-saft-README  must be renamed or removed to get  o-saft.pl  working.
(
 )  QUICK START
(       o-saft.pl --help
 )      o-saft.pl +check your.tld
(       o-saft.pl +info  your.tld
 )      o-saft.pl +quick your.tld
(       o-saft.pl +cipher    your.tld
 )      o-saft.pl +cipherall your.tld
(       o-saft.pl --help=commands
 )
(       o-saft.tcl      (very simple GUI; requires Tcl/Tk 8.5 or newer)
 )
(       Project home is https://www.owasp.org/index.php/O-Saft
 )      Project roadmap https://www.owasp.org/index.php/Projects/O-Saft/Roadmap
(
 )      Historic Project home https://www.owasp.org/index.php/Projects/O-Saft
(
 )  Get a Copy
(       git clone git@github.com:OWASP/O-Saft.git
 )      git clone https://github.com/OWASP/O-Saft.git
(       wget https://github.com/OWASP/O-Saft/raw/master/o-saft.tgz
 )
(
 )  VERSION
(       The version of the tarball  o-saft.tgz  represents the version listed
 )      on top herein. All other files in the repository may be ahead of this
(       (tarball) version.
 )
(       SHA256 checksum of o-saft.tgz
 )           f52e4a0f5511f236292e955b472c9a834ed5ae60fc6828c26903dd6c18c96f02 
(
 \_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-/
Something went wrong with that request. Please try again.