Skip to content

Releases: iSECPartners/sslyze

SSLyze has moved!

16 Apr 18:19
@nabla-c0d3 nabla-c0d3
release-0.9
da37403
Compare
Choose a tag to compare
SSLyze has moved! Latest
Latest

The project is now hosted at https://github.com/nabla-c0d3/sslyze.

Assets 2
Loading

SSLyze v0.8

30 Dec 20:00
@nabla-c0d3 nabla-c0d3
release-0.8
4bb8a8e
Compare
Choose a tag to compare
SSLyze v0.8

Changelog

  • Additional certificate chain validation using the Apple, Microsoft and Java trust stores in addition to Mozilla's
  • Added support for StartTLS RDP; see --starttls=rdp
  • Greatly improved the reliability and accuracy of scan results by adding an exponential backoff algorithm to retry failed network connections. This will especially impact scans against servers that stop properly answering after several concurrent connections have already been opened. The number of retry attempts can be controlled using --nb_retries
  • Bug fixes including:
    • Better results when the server requested a client certificate but none was supplied
    • Clarified text and XML output
    • Better HTTP Strict Transport Security plugin
    • Fixed PluginCompression false negatives
Assets 7
Loading

SSLyze v0.7

27 Nov 20:24
@nabla-c0d3 nabla-c0d3
release-0.7
29cb06f
Compare
Choose a tag to compare
SSLyze v0.7

Changelog

  • Complete rewrite of the OpenSSL wrapper as a C extension
    • SSLyze is now statically linked with the latest version of OpenSSL instead of using the system’s (potentially outdated/broken) OpenSSL library
    • All of SSLyze’s features are now available on all supported platforms (including SSL 2.0, TLS 1.1 and TLS 1.2)
    • Scans are slightly faster
    • Python 2.6 is no longer supported
  • Support for StartTLS FTP, POP, IMAP, LDAP and “auto”. See —starttls
  • Support for OCSP Stapling. See —certinfo
  • Other various improvements that results in SSLyze being more stable/robust
Assets 7
Loading

SSLyze v0.6

27 Nov 20:20
@nabla-c0d3 nabla-c0d3
release-0.6
2d8c2b2
Compare
Choose a tag to compare
SSLyze v0.6

Changelog

  • Added support for Server Name Indication; see –sni
  • Partial results are returned when the server requires client authentication but no client certificate was provided
  • Preliminary IPv6 support
  • Various bug fixes and better support of client authentication and HTTPS tunneling
Assets 4
Loading

SSLyze v0.5

27 Nov 20:17
@nabla-c0d3 nabla-c0d3
release-0.5
86c3d55
Compare
Choose a tag to compare
SSLyze v0.5

Changelog

  • XML output including full certificate parsing; see --xml_out
  • The list of servers to scan can be provided using a text file; see --targets_in
  • Improved certificate verification with hostname validation and EV certificates support
  • Clarified output and lots of bug fixes
  • OS X Mountain Lion is now officially supported
  • Support for compression / CRIME testing
Assets 4
Loading