module
SSL/TLS Version Detection
| Disclosed | Created |
|---|---|
| 2014-10-14 | 2022-11-08 |
Disclosed
2014-10-14
Created
2022-11-08
Description
Check if a server supports a given version of SSL/TLS and cipher suites.
The certificate is stored in loot, and any known vulnerabilities against that
SSL version and cipher suite combination are checked. These checks include
POODLE, deprecated protocols, expired/not valid certs, low key strength, null cipher suites,
certificates signed with MD5, DROWN, RC4 ciphers, exportable ciphers, LOGJAM, and BEAST.
The certificate is stored in loot, and any known vulnerabilities against that
SSL version and cipher suite combination are checked. These checks include
POODLE, deprecated protocols, expired/not valid certs, low key strength, null cipher suites,
certificates signed with MD5, DROWN, RC4 ciphers, exportable ciphers, LOGJAM, and BEAST.
Authors
todb todb@metasploit.com
et et@metasploit.com
Chris John Riley
Veit Hailperin hailperv@gmail.com
h00die
et et@metasploit.com
Chris John Riley
Veit Hailperin hailperv@gmail.com
h00die
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.