mirror of
https://github.com/autistic-symposium/sec-pentesting-toolkit.git
synced 2025-05-02 06:46:07 -04:00
web exploit
This commit is contained in:
bt3gl
parent
a0c026ca27
commit
662953c17a
17 changed files with 201 additions and 119 deletions
|
|
@ -205,8 +205,24 @@ $ xxd -r -p <<< 2f722f6e6574736563
|
|||
Example: http://017700000001 --> 127.0.0.1
|
||||
|
||||
|
||||
## OpenSSL, Encoding and Certificates
|
||||
|
||||
|
||||
* Identification and verification of SSL certificates can be done with openssl or
|
||||
TLSSLed tools. They allow us to verify this information automatically SSL.
|
||||
|
||||
To determine the period of validity of licenses:
|
||||
|
||||
```
|
||||
$ ./openssl s_client --connect <WEBSITE>:443
|
||||
```
|
||||
|
||||
Testing SSLv2:
|
||||
```
|
||||
$ ./openssl s_client --no_tls1 --no_ssl3 --connect <WEBSITE>:443
|
||||
```
|
||||
|
||||
* For Identification and verification of encoding supported by the Website we can use **EcoScan34**.
|
||||
|
||||
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue