PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-06 12:41:29 +00:00
Code Issues Projects Releases Wiki Activity

Merge branch 'ssl-known-key-sslcert'

Browse Source
This commit is contained in:
dmiller
2012-07-08 04:12:25 +00:00
parent cdf30c1233
commit fd6d41e30a
1 changed files with 6 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
scripts/ssl-known-key.nse
View File

@@ -2,6 +2,7 @@ local io = require "io"
local nmap = require "nmap" local nmap = require "nmap"
local shortport = require "shortport" local shortport = require "shortport"
local stdnse = require "stdnse" local stdnse = require "stdnse"
local sslcert = require "sslcert"
-- -*- mode: lua -*- -- -*- mode: lua -*-
-- vim: set filetype=lua : -- vim: set filetype=lua :
@@ -31,7 +32,7 @@ include with Nmap) list.
author = "Mak Kolybabi" author = "Mak Kolybabi"
license = "Same as Nmap--See http://nmap.org/book/man-legal.html" license = "Same as Nmap--See http://nmap.org/book/man-legal.html"
categories = {"safe", "discovery", "vuln"} categories = {"safe", "discovery", "vuln", "default"}
local FINGERPRINT_FILE = "ssl-fingerprints" local FINGERPRINT_FILE = "ssl-fingerprints"
@@ -112,17 +113,11 @@ action = function(host, port)
end end
local fingerprints = result local fingerprints = result
-- Connect to host.
local sock = nmap.new_socket()
local status, err = sock:connect(host, port, "ssl")
if not status then
stdnse.print_debug(1, "Failed to connect: %s", err)
return
end
-- Get SSL certificate. -- Get SSL certificate.
local cert = sock:get_ssl_certificate() local status, cert = sslcert.getCertificate(host, port)
sock:close() if not status then
stdnse.print_debug(2, "sslcert.getCertificate error: %s", cert)
end
if not cert:digest("sha1") then if not cert:digest("sha1") then
stdnse.print_debug(2, "Certificate does not have a SHA-1 fingerprint.") stdnse.print_debug(2, "Certificate does not have a SHA-1 fingerprint.")
return return