Burp SSL Scanner

           

Scenario: Scan your website for SSL vulnerabilities

Solution:

Use Burp suite to run SSL Scanner

Burp Suite is an integrated platform for performing security testing of web applications.

Below are the steps to run a SSL scan.

Prerequisites:
1.  Install Jython:
  • Navigate to https://www.jython.org/download.html and download the latest Jython standalone JAR file.
  • Burp Suite -> Extender -> Options. In Python Environment section add the downloaded file from #1.
 2. Install Burp SSL Scanner:
  • Navigate to Extender -> BApp Store- > find SSL Scanner or manually install [by downloading from their site]
  • Once installed it would appear in Extender -> Extensions.
  1. Now SSL Scanner - > Target = {Your WebSite} -> Start Scanning
  2. Once complete it will show the report. If Offer TLS1.0 etc is Yes then it is still using old version else it would be No.
at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Move Github Sub Repository back to main repo

 -- delete .gitmodules git rm --cached MyProject/Core git commit -m 'Remove myproject_core submodule' rm -rf MyProject/Core git remo...

  • Move Github Sub Repository back to main repo
     -- delete .gitmodules git rm --cached MyProject/Core git commit -m 'Remove myproject_core submodule' rm -rf MyProject/Core git remo...
  • Azure - CL & Commands
               Scenario:  Use Azure CLI to execute commands & perform operations. Solution: Per Azure docs: The Azure Command-Line Interface...
  • Web protocol evolution
      Scenario: The  end-to-end principle  is a network design method in which application-specific features are kept at communication end point...