yawast 0.5.0.beta2 → 0.5.0.beta3
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +6 -0
- data/README.md +312 -244
- data/bin/yawast +2 -0
- data/lib/resources/common_file.txt +29 -0
- data/lib/resources/srv_list.txt +775 -0
- data/lib/resources/subdomain_list.txt +2354 -0
- data/lib/scanner/core.rb +1 -1
- data/lib/scanner/generic.rb +6 -107
- data/lib/scanner/plugins/dns/generic.rb +195 -0
- data/lib/scanner/plugins/ssl/sweet32.rb +85 -0
- data/lib/scanner/ssl.rb +18 -50
- data/lib/scanner/ssl_labs.rb +1 -1
- data/lib/version.rb +1 -1
- data/yawast.gemspec +1 -0
- metadata +20 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d4708466ef6ca5c2b60d7bc65c8d0b7e140f13ef
|
|
4
|
+
data.tar.gz: ce469cdfc381a00bae37220c150fbf1424f84bb2
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 2790493be0d96156111fe4dd65e86fd77492e2887861af9e255b0cf28103502270f3c9cdea85586b2a926fab8aa6ad5c96ce5905f84262ce308ecee45afcdda0
|
|
7
|
+
data.tar.gz: 8cad9004d6af28d5bc0851000e94c53eee474389f67f3eb5f58d251449fadd71e762af2ff593582ff2f5972ca2ba44fcc7635f6410d5b3841a6ade6b55d1a184
|
data/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,7 @@
|
|
|
1
1
|
## 0.5.0 - In Development
|
|
2
2
|
|
|
3
|
+
* [#35](https://github.com/adamcaudill/yawast/issues/35) - Add check for SameSite cookie attribute
|
|
4
|
+
* [#53](https://github.com/adamcaudill/yawast/issues/53) - Added checks for .well-known URLs
|
|
3
5
|
* [#75](https://github.com/adamcaudill/yawast/issues/75) - Use internal SSL scanner for non-standard ports
|
|
4
6
|
* [#84](https://github.com/adamcaudill/yawast/issues/84) - Improve the display of ct_precert_scts
|
|
5
7
|
* [#86](https://github.com/adamcaudill/yawast/issues/86) - Add check for Tomcat Manager & common passwords
|
|
@@ -8,7 +10,11 @@
|
|
|
8
10
|
* [#89](https://github.com/adamcaudill/yawast/issues/89) - Add IP Location Info
|
|
9
11
|
* [#90](https://github.com/adamcaudill/yawast/issues/90) - Add HSTS Preload check via [HSTSPreload.com](https://hstspreload.com/)
|
|
10
12
|
* [#91](https://github.com/adamcaudill/yawast/issues/91) - Enhanced file search
|
|
13
|
+
* [#96](https://github.com/adamcaudill/yawast/issues/96) - Scan for known SRV DNS Records
|
|
14
|
+
* [#97](https://github.com/adamcaudill/yawast/issues/97) - Search for Common Subdomains
|
|
11
15
|
* [#76](https://github.com/adamcaudill/yawast/issues/76) - Bug: Handle error for OpenSSL version support error
|
|
16
|
+
* [#98](https://github.com/adamcaudill/yawast/issues/98) - Bug: SWEET32 Test Fails if 3DES Not Support By Latest Server Supported TLS Version
|
|
17
|
+
* [#99](https://github.com/adamcaudill/yawast/issues/99) - Bug: Cloudflare SWEET32 False Positive
|
|
12
18
|
* Various code and other improvements.
|
|
13
19
|
|
|
14
20
|
## 0.4.0 - 2016-11-03
|