Skip to content

/ sslyze

Latest release
4.0.1
Latest release

@nabla-c0d3 nabla-c0d3 released this Jan 20, 2021 · 1 commit to release since this release

  • Updated the version of cryptography in the setup.py (#467).
  • Fixed a crash when displaying non-successful OCSP responses (#477).
Assets 3
4.0.0

@nabla-c0d3 nabla-c0d3 released this Jan 19, 2021 · 10 commits to release since this release

  • Added support for Python 3.9 (#468).
  • Fixed a crash when parsing OCSP responses (#471).
    • API-breaking change: the ocsp_response field in CertificateInfoScanResult is now an OCSPResponse instance from the cryptography.x509.ocsp module.
    • JSON-breaking change: Significantly improved the JSON output for certificates and OCSP responses, when using --certinfo.
  • Fixed a false positive when testing for client-initiated renegotiation DoS attacks on some servers (#473).
    • API-breaking change: the accepts_client_renegotiation field in SessionRenegotiationScanResult was removed, and the more accurate is_vulnerable_to_client_renegotiation_dos field was added.
  • The ability to detect the server’s “preferred” cipher suite was removed for being too unreliable, and will be replaced by full cipher suite order detection in a future release (#456).
    • API-breaking change: the cipher_suite_preferred_by_server in CipherSuitesScanResult was removed.
  • Fixed a crash when scanning a server with an exotic/invalid TLS configuration (#466).
  • Fixed support for older versions of macOS.
  • Added support for the latest version of cryptography (#467).
Assets 3
3.1.0

@nabla-c0d3 nabla-c0d3 released this Nov 11, 2020 · 36 commits to release since this release

  • Added support for scanning for supported elliptic curves (#447):
$ python -m sslyze --elliptic_curves www.cloudflare.com

 * Elliptic Curve Key Exchange:
       Supported curves:                  prime256v1, secp384r1, secp521r1, X25519
       Rejected curves:                   sect163r2, secp160r1, sect233k1, X448, secp160r2, sect233r1, secp192k1,
sect239k1, secp224k1, sect193r1, sect283k1, secp224r1, sect163k1, sect283r1, secp256k1, secp160k1, 
sect409k1, prime192v1, sect409r1, sect163r1, sect193r2, sect571k1, sect571r1
  • Added support for cryptography 3.x (#455).
  • Fixed various crashes (#458, #459).
Assets 3
3.0.8

@nabla-c0d3 nabla-c0d3 released this Jun 28, 2020

  • Significantly reduced memory usage when using SSLyze in a Python application.
Assets 3
3.0.7

@nabla-c0d3 nabla-c0d3 released this Jun 13, 2020

  • Fixed crashes when scanning Amazon Cloudfront due to TLS 1.3 (#445).
  • Fixed a crash when scanning a server with an Ed25519 certificate (#444).
  • The CLI will now run --regular if no scan options were supplied: python -m sslyze google.com (#440)
Assets 3
3.0.6

@nabla-c0d3 nabla-c0d3 released this May 31, 2020

  • Fixed a crash when scanning Amazon Cloudfront for Heartbleed and CCS Injection (#437).
  • The Python API now exposes a JsonEncoder to make it easy to serialize a ServerScanResult to JSON (#439).
Assets 3
May 31, 2020

3.0.5

3.0.4

@nabla-c0d3 nabla-c0d3 released this May 10, 2020

  • Fixed crashes when running SSLyze on localized (ie. non-english) versions of Windows (#434).
Assets 3
3.0.3

@nabla-c0d3 nabla-c0d3 released this Apr 27, 2020

  • Fixed bug with Heartbleed and CCS Injection checks (#202 )
  • Fix crashes with servers that have connectivity issues (#433, #430 )
Assets 3
3.0.2

@nabla-c0d3 nabla-c0d3 released this Apr 19, 2020

  • Improved check for HTTP security headers by adding support for HTTP redirections (#393 ).
  • Fixed bug causing some results to not be returned when scanning multiple servers (#429 ).
  • Added support for more versions of the cryptography package for better compatibility (#428 ).
  • Fixed crash when scanning a server with a certificate that has duplicate X509 extensions (#420 )
Assets 3