yawast 0.2.1 → 0.2.2

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 77548870ec7d207d0458e95a8e839b91e6109b24
4
- data.tar.gz: bb629d0433e0d6eac912375caea63c6cd44a9377
3
+ metadata.gz: 137841009f16eb238019ed11dc7ec40e06935e45
4
+ data.tar.gz: cc4e24cecc340ec42719b00e558332a6375bf1b4
5
5
  SHA512:
6
- metadata.gz: 7e578a1adda28ae12a8f7fa74c9c16255821217e0aa5ea16a75b0e932f8def3ca5fb9ada45038c351b0ce068ba6d8cfa1eb8ba7412b2a8309642eb4251ee4584
7
- data.tar.gz: ce97197d52ef62e9c7573708a93a7696fa87f09bb4cba6825479e1e8ac8feca1f71368336e173980b44c4aba4a0def958993d3d11d053682c726710092533a0f
6
+ metadata.gz: 454285f569b8ab407fd84b3b7387531a4cfe6d4ba2ca988fbdd891f2af7febf825729452230d4be1ea4813b19c6d795207dd8ae05a0b9c60acfe7330e88950e5
7
+ data.tar.gz: ce9a9c94ca64a13561e6cba6bad628e86b37ac28473584683c54ac8fc76fa1477e26827c267cf323b9b303862ac36bdefe88f7447fb0da53265cdf5043a06e71
data/CHANGELOG.md ADDED
@@ -0,0 +1,8 @@
1
+ ## 0.2.2 - 2016-08-07
2
+
3
+ * [#55](https://github.com/adamcaudill/yawast/issues/55) - Add Protocol Intolerance information.
4
+ * Update `ssllabs` required version to 1.24.0 to correct issue with new SSL Labs API release.
5
+
6
+ ## 0.2.1 - 2016-08-03
7
+
8
+ * Initial Public Release
data/README.md CHANGED
@@ -1,4 +1,4 @@
1
- ## YAWAST [![Build Status](https://travis-ci.org/adamcaudill/yawast.png?branch=master)](https://travis-ci.org/adamcaudill/yawast) [![Code Climate](https://codeclimate.com/github/adamcaudill/yawast.png)](https://codeclimate.com/github/adamcaudill/yawast) [![Coverage Status](https://coveralls.io/repos/github/adamcaudill/yawast/badge.svg?branch=master)](https://coveralls.io/github/adamcaudill/yawast?branch=master)
1
+ ## YAWAST [![Build Status](https://travis-ci.org/adamcaudill/yawast.png?branch=master)](https://travis-ci.org/adamcaudill/yawast) [![Code Climate](https://codeclimate.com/github/adamcaudill/yawast.png)](https://codeclimate.com/github/adamcaudill/yawast) [![Coverage Status](https://coveralls.io/repos/github/adamcaudill/yawast/badge.svg?branch=master)](https://coveralls.io/github/adamcaudill/yawast?branch=master) [![Gem Version](https://badge.fury.io/rb/yawast.svg)](https://badge.fury.io/rb/yawast)
2
2
 
3
3
  **The YAWAST Antecedent Web Application Security Toolkit**
4
4
 
@@ -12,6 +12,16 @@ YAWAST is an application meant to simplify initial analysis and information gath
12
12
 
13
13
  This is meant to provide a easy way to perform initial analysis and information discovery. It's not a full testing suite, and it certainly isn't Metasploit. The idea is to provide a quick way to perform initial data collection, which can then be used to better target further tests. It is especially useful when used in conjunction with Burp Suite (via the `--proxy` parameter).
14
14
 
15
+ ### Installing
16
+
17
+ The simplest method to install is to use the RubyGem installer:
18
+
19
+ `gem install yawast`
20
+
21
+ This allows for simple updates (`gem update yawast`) and makes it easy to ensure that you are always using the latest version.
22
+
23
+ YAWAST requires Ruby 2.2+, and is tested on Mac OSX and Linux (Windows should work; please open a ticket if you have issues).
24
+
15
25
  ### Tests
16
26
 
17
27
  The following tests are performed:
@@ -194,229 +204,410 @@ For authenticated testing, YAWAST allows you to specify a cookie to be passed vi
194
204
  Using `scan` - the normal go-to option, here's what you get when scanning my website:
195
205
 
196
206
  ```
197
- $yawast scan https://adamcaudill.com --sslsessioncount --dir
198
- __ _____ _ _ ___ _____ _____
199
- \ \ / / _ \| | | |/ _ \ / ___|_ _|
200
- \ V / /_\ \ | | / /_\ \\ `--. | |
201
- \ /| _ | |/\| | _ | `--. \ | |
202
- | || | | \ /\ / | | |/\__/ / | |
203
- \_/\_| |_/\/ \/\_| |_/\____/ \_/
204
-
205
- YAWAST v0.1.0 - The YAWAST Antecedent Web Application Security Toolkit
206
- Copyright (c) 2013-2016 Adam Caudill <adam@adamcaudill.com>
207
- Support & Documentation: https://github.com/adamcaudill/yawast
208
- Ruby 2.2.4-p230; OpenSSL 1.0.2f 28 Jan 2016 (x86_64-darwin15)
209
-
210
- Scanning: https://adamcaudill.com/
211
-
212
- DNS Information:
213
- [I] 104.28.26.55 (N/A)
214
- https://www.shodan.io/host/104.28.26.55
215
- https://censys.io/ipv4/104.28.26.55
216
- [I] 104.28.27.55 (N/A)
217
- https://www.shodan.io/host/104.28.27.55
218
- https://censys.io/ipv4/104.28.27.55
219
- [I] 2400:CB00:2048:1::681C:1B37 (N/A)
220
- https://www.shodan.io/host/2400:cb00:2048:1::681c:1b37
221
- [I] 2400:CB00:2048:1::681C:1A37 (N/A)
222
- https://www.shodan.io/host/2400:cb00:2048:1::681c:1a37
223
- [I] TXT: v=spf1 mx a ptr include:_spf.google.com ~all
224
- [I] MX: aspmx4.googlemail.com (30)
225
- [I] MX: aspmx.l.google.com (10)
226
- [I] MX: alt1.aspmx.l.google.com (20)
227
- [I] MX: aspmx2.googlemail.com (30)
228
- [I] MX: alt2.aspmx.l.google.com (20)
229
- [I] MX: aspmx3.googlemail.com (30)
230
- [I] MX: aspmx5.googlemail.com (30)
231
- [I] NS: vera.ns.cloudflare.com
232
- [I] NS: hal.ns.cloudflare.com
233
-
234
- [I] HEAD:
235
- [I] date: Fri, 26 Aug 2016 17:32:35 GMT
236
- [I] content-type: text/html; charset=UTF-8
237
- [I] connection: close
238
- [I] set-cookie: __cfduid=1; expires=Sat, 26-Aug-17 17:32:35 GMT; path=/; domain=.adamcaudill.com; HttpOnly
239
- [I] vary: Accept-Encoding,Cookie
240
- [I] link: <https://adamcaudill.com/wp-json/>; rel="https://api.w.org/"
241
- [I] x-frame-options: sameorigin
242
- [I] strict-transport-security: max-age=15552000; preload
243
- [I] x-content-type-options: nosniff
244
- [I] server: cloudflare-nginx
245
- [I] cf-ray: 2d890621bd172e93-MIA
246
-
247
- [I] NOTE: Server appears to be Cloudflare; WAF may be in place.
248
-
249
- [I] X-Frame-Options Header: sameorigin
250
- [I] X-Content-Type-Options Header: nosniff
251
- [W] Content-Security-Policy Header Not Present
252
- [W] Public-Key-Pins Header Not Present
253
-
254
- [I] Cookies:
255
- [I] __cfduid=1; expires=Sat, 26-Aug-17 17:32:35 GMT; path=/; domain=.adamcaudill.com; HttpOnly
256
- [W] Cookie missing Secure flag
257
-
258
- Beginning SSL Labs scan (this could take a minute or two)
259
- [SSL Labs] This assessment service is provided free of charge by Qualys SSL Labs, subject to our terms and conditions: https://www.ssllabs.com/about/terms.html
260
- .
261
-
262
- [I] IP: 104.28.27.55 - Grade: A+
263
-
264
- Certificate Information:
265
- [I] Subject: CN=sni67677.cloudflaressl.com,OU=PositiveSSL Multi-Domain,OU=Domain Control Validated
266
- [I] Common Names: ["sni67677.cloudflaressl.com"]
267
- [I] Alternative names:
268
- [I] sni67677.cloudflaressl.com
269
- [I] *.adamcaudill.com
270
- [I] *.bsidesknoxville.com
271
- [I] *.secrypto.com
272
- [I] *.smimp.org
273
- [I] *.underhandedcrypto.com
274
- [I] adamcaudill.com
275
- [I] bsidesknoxville.com
276
- [I] secrypto.com
277
- [I] smimp.org
278
- [I] underhandedcrypto.com
279
- [I] Not Before: 2016-08-13T00:00:00+00:00
280
- [I] Not After: 2017-02-12T23:59:59+00:00
281
- [I] Key: EC 256 (RSA equivalent: 3072)
282
- [I] Public Key Hash: 365e26188f2e5913b9cbe68e0d80aff8e1754fd8
283
- [I] Version: 2
284
- [I] Serial: 18930702358496442989903109042193740748
285
- [I] Issuer: COMODO ECC Domain Validation Secure Server CA 2
286
- [I] Signature algorithm: SHA256withECDSA
287
- [I] Extended Validation: No (Domain Control)
288
- [I] Certificate Transparency: No
289
- [I] OCSP Must Staple: No
290
- [I] Revocation information: CRL information available
291
- [I] Revocation information: OCSP information available
292
- [I] Revocation status: certificate not revoked
293
- [I] Extensions:
294
- [I] authorityKeyIdentifier = keyid:40:09:61:67:F0:BC:83:71:4F:DE:12:08:2C:6F:D4:D4:2B:76:3D:96,
295
- [I] subjectKeyIdentifier = D0:F8:D6:82:36:B5:5C:AC:2D:9A:8E:7B:D9:D5:E6:99:38:B6:8C:FE
296
- [I] keyUsage = critical, Digital Signature
297
- [I] basicConstraints = critical, CA:FALSE
298
- [I] extendedKeyUsage = TLS Web Server Authentication, TLS Web Client Authentication
299
- [I] certificatePolicies = Policy: 1.3.6.1.4.1.6449.1.2.2.7, CPS: https://secure.comodo.com/CPS, Policy: 2.23.140.1.2.1,
300
- [I] crlDistributionPoints = , Full Name:, URI:http://crl.comodoca4.com/COMODOECCDomainValidationSecureServerCA2.crl,
301
- [I] authorityInfoAccess = CA Issuers - URI:http://crt.comodoca4.com/COMODOECCDomainValidationSecureServerCA2.crt, OCSP - URI:http://ocsp.comodoca4.com,
302
- [I] Hash: 1ae6362e4fc377cccb6df6261838a5d9bb49663d
303
- https://censys.io/certificates?q=1ae6362e4fc377cccb6df6261838a5d9bb49663d
304
- https://crt.sh/?q=1ae6362e4fc377cccb6df6261838a5d9bb49663d
305
-
306
- Configuration Information:
307
- Protocol Support:
308
- [I] TLS 1.0
309
- [I] TLS 1.1
310
- [I] TLS 1.2
311
-
312
- Cipher Suite Support:
313
- [I] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 - 128-bits - ECDHE-256-bits
314
- [I] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 - 128-bits - ECDHE-256-bits
315
- [I] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA - 128-bits - ECDHE-256-bits
316
- [I] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 - 256-bits - ECDHE-256-bits
317
- [I] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 - 256-bits - ECDHE-256-bits
318
- [I] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA - 256-bits - ECDHE-256-bits
319
- [W] TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA - 112-bits - ECDHE-256-bits
320
- [I] TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 - 256-bits - ECDHE-256-bits
321
- [I] OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 - 256-bits - ECDHE-256-bits
322
-
323
- Handshake Simulation:
324
- [E] Android 2.3.7 - Simulation Failed
325
- [I] Android 4.0.4 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
326
- [I] Android 4.1.1 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
327
- [I] Android 4.2.2 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
328
- [I] Android 4.3 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
329
- [I] Android 4.4.2 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
330
- [I] Android 5.0.0 - TLS 1.2 - OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
331
- [I] Android 6.0 - TLS 1.2 - OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
332
- [I] Baidu Jan 2015 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
333
- [I] BingPreview Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
334
- [I] Chrome 51 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
335
- [I] Firefox 31.3.0 ESR / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
336
- [I] Firefox 46 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
337
- [I] Firefox 47 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
338
- [I] Googlebot Feb 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
339
- [E] IE 6 / XP - Simulation Failed
340
- [I] IE 7 / Vista - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
341
- [E] IE 8 / XP - Simulation Failed
342
- [I] IE 8-10 / Win 7 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
343
- [I] IE 11 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
344
- [I] IE 11 / Win 8.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
345
- [I] IE 10 / Win Phone 8.0 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
346
- [I] IE 11 / Win Phone 8.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
347
- [I] IE 11 / Win Phone 8.1 Update - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
348
- [I] IE 11 / Win 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
349
- [I] Edge 13 / Win 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
350
- [I] Edge 13 / Win Phone 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
351
- [E] Java 6u45 - Simulation Failed
352
- [I] Java 7u25 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
353
- [I] Java 8u31 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
354
- [E] OpenSSL 0.9.8y - Simulation Failed
355
- [I] OpenSSL 1.0.1l - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
356
- [I] OpenSSL 1.0.2e - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
357
- [I] Safari 5.1.9 / OS X 10.6.8 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
358
- [I] Safari 6 / iOS 6.0.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
359
- [I] Safari 6.0.4 / OS X 10.8.4 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
360
- [I] Safari 7 / iOS 7.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
361
- [I] Safari 7 / OS X 10.9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
362
- [I] Safari 8 / iOS 8.4 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
363
- [I] Safari 8 / OS X 10.10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
364
- [I] Safari 9 / iOS 9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
365
- [I] Safari 9 / OS X 10.11 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
366
- [I] Apple ATS 9 / iOS 9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
367
- [I] Yahoo Slurp Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
368
- [I] YandexBot Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
369
-
370
- Protocol & Vulnerability Information:
371
- [I] DROWN: No
372
- [I] Secure Renegotiation: secure renegotiation supported
373
- [I] POODLE (SSL): No
374
- [I] POODLE (TLS): No
375
- [I] Downgrade Prevention: Yes
376
- [I] Compression: No
377
- [I] Heartbleed: No
378
- [I] OpenSSL CCS (CVE-2014-0224): No
379
- [I] OpenSSL Padding Oracle (CVE-2016-2107): No
380
- [I] Forward Secrecy: Yes (all simulated clients)
381
- [I] OCSP Stapling: Yes
382
- [I] FREAK: No
383
- [I] Logjam: No
384
- [I] DH public server param (Ys) reuse: No
385
-
386
- TLS Session Request Limit: Checking number of requests accepted...
387
- .....
388
- [I] TLS Session Request Limit: Connection terminated after 100 requests (TLS Reconnected)
389
-
390
- [I] HSTS: Enabled (strict-transport-security: max-age=15552000; preload)
391
-
392
- [W] '/sitemap.xml' found: https://adamcaudill.com/sitemap.xml
393
-
394
- [W] '/readme.html' found: https://adamcaudill.com/readme.html
395
-
396
- Searching for common directories...
397
- [I] Found: 'https://adamcaudill.com/0/'
398
- [I] Found: 'https://adamcaudill.com/2006/'
399
- [I] Found: 'https://adamcaudill.com/2007/'
400
- [I] Found: 'https://adamcaudill.com/2008/'
401
- [I] Found: 'https://adamcaudill.com/2009/'
402
- [I] Found: 'https://adamcaudill.com/2010/'
403
- [I] Found: 'https://adamcaudill.com/2011/'
404
- [I] Found: 'https://adamcaudill.com/2013/'
405
- [I] Found: 'https://adamcaudill.com/2014/'
406
- [I] Found: 'https://adamcaudill.com/2015/'
407
- [I] Found: 'https://adamcaudill.com/2016/'
408
- [I] Found: 'https://adamcaudill.com/About/'
409
- [I] Found: 'https://adamcaudill.com/about/'
410
- [I] Found: 'https://adamcaudill.com/feed/'
411
- [I] Found: 'https://adamcaudill.com/pgp/'
412
- [I] Found: 'https://adamcaudill.com/photo/'
413
- [I] Found: 'https://adamcaudill.com/resume/'
414
- [I] Found: 'https://adamcaudill.com/tools/'
415
- [I] Found: 'https://adamcaudill.com/wp-content/'
416
- [I] Found: 'https://adamcaudill.com/wp-includes/'
417
-
418
- [I] Meta Generator: WordPress 4.6
419
- Scan complete.
207
+ $yawast scan https://adamcaudill.com --dir --sslsessioncount
208
+ __ _____ _ _ ___ _____ _____
209
+ \ \ / / _ \| | | |/ _ \ / ___|_ _|
210
+ \ V / /_\ \ | | / /_\ \\ `--. | |
211
+ \ /| _ | |/\| | _ | `--. \ | |
212
+ | || | | \ /\ / | | |/\__/ / | |
213
+ \_/\_| |_/\/ \/\_| |_/\____/ \_/
214
+
215
+ YAWAST v0.2.2 - The YAWAST Antecedent Web Application Security Toolkit
216
+ Copyright (c) 2013-2016 Adam Caudill <adam@adamcaudill.com>
217
+ Support & Documentation: https://github.com/adamcaudill/yawast
218
+ Ruby 2.2.4-p230; OpenSSL 1.0.2f 28 Jan 2016 (x86_64-darwin15)
219
+
220
+ Scanning: https://adamcaudill.com/
221
+
222
+ DNS Information:
223
+ [I] 104.28.27.55 (N/A)
224
+ https://www.shodan.io/host/104.28.27.55
225
+ https://censys.io/ipv4/104.28.27.55
226
+ [I] 104.28.26.55 (N/A)
227
+ https://www.shodan.io/host/104.28.26.55
228
+ https://censys.io/ipv4/104.28.26.55
229
+ [I] 2400:CB00:2048:1::681C:1B37 (N/A)
230
+ https://www.shodan.io/host/2400:cb00:2048:1::681c:1b37
231
+ [I] 2400:CB00:2048:1::681C:1A37 (N/A)
232
+ https://www.shodan.io/host/2400:cb00:2048:1::681c:1a37
233
+ [I] TXT: v=spf1 mx a ptr include:_spf.google.com ~all
234
+ [I] MX: aspmx4.googlemail.com (30)
235
+ [I] MX: aspmx.l.google.com (10)
236
+ [I] MX: alt1.aspmx.l.google.com (20)
237
+ [I] MX: aspmx2.googlemail.com (30)
238
+ [I] MX: alt2.aspmx.l.google.com (20)
239
+ [I] MX: aspmx3.googlemail.com (30)
240
+ [I] MX: aspmx5.googlemail.com (30)
241
+ [I] NS: vera.ns.cloudflare.com
242
+ [I] NS: hal.ns.cloudflare.com
243
+
244
+ [I] HEAD:
245
+ [I] date: Wed, 07 Sep 2016 18:40:14 GMT
246
+ [I] content-type: text/html; charset=UTF-8
247
+ [I] connection: close
248
+ [I] set-cookie: __cfduid=1; expires=Thu, 07-Sep-17 18:40:14 GMT; path=/; domain=.adamcaudill.com; HttpOnly
249
+ [I] vary: Accept-Encoding,Cookie
250
+ [I] link: <https://adamcaudill.com/wp-json/>; rel="https://api.w.org/"
251
+ [I] x-frame-options: sameorigin
252
+ [I] strict-transport-security: max-age=15552000; preload
253
+ [I] x-content-type-options: nosniff
254
+ [I] server: cloudflare-nginx
255
+ [I] cf-ray: 1-MIA
256
+
257
+ [I] NOTE: Server appears to be Cloudflare; WAF may be in place.
258
+
259
+ [I] X-Frame-Options Header: sameorigin
260
+ [I] X-Content-Type-Options Header: nosniff
261
+ [W] Content-Security-Policy Header Not Present
262
+ [W] Public-Key-Pins Header Not Present
263
+
264
+ [I] Cookies:
265
+ [I] __cfduid=1; expires=Thu, 07-Sep-17 18:40:14 GMT; path=/; domain=.adamcaudill.com; HttpOnly
266
+ [W] Cookie missing Secure flag
267
+
268
+
269
+ Beginning SSL Labs scan (this could take a minute or two)
270
+ [SSL Labs] This assessment service is provided free of charge by Qualys SSL Labs, subject to our terms and conditions: https://www.ssllabs.com/about/terms.html
271
+ ............................................
272
+
273
+ [I] IP: 104.28.27.55 - Grade: A+
274
+
275
+ Certificate Information:
276
+ [I] Subject: CN=sni67677.cloudflaressl.com,OU=PositiveSSL Multi-Domain,OU=Domain Control Validated
277
+ [I] Common Names: ["sni67677.cloudflaressl.com"]
278
+ [I] Alternative names:
279
+ [I] sni67677.cloudflaressl.com
280
+ [I] *.adamcaudill.com
281
+ [I] *.bsidesknoxville.com
282
+ [I] *.secrypto.com
283
+ [I] *.smimp.org
284
+ [I] *.underhandedcrypto.com
285
+ [I] adamcaudill.com
286
+ [I] bsidesknoxville.com
287
+ [I] secrypto.com
288
+ [I] smimp.org
289
+ [I] underhandedcrypto.com
290
+ [I] Not Before: 2016-08-13T00:00:00+00:00
291
+ [I] Not After: 2017-02-12T23:59:59+00:00
292
+ [I] Key: EC 256 (RSA equivalent: 3072)
293
+ [I] Public Key Hash: cf20d86494ada433c9134bacc68a8764467d24ba
294
+ [I] Version: 2
295
+ [I] Serial: 18930702358496442989903109042193740748
296
+ [I] Issuer: COMODO ECC Domain Validation Secure Server CA 2
297
+ [I] Signature algorithm: SHA256withECDSA
298
+ [I] Extended Validation: No (Domain Control)
299
+ [I] Certificate Transparency: No
300
+ [I] OCSP Must Staple: No
301
+ [I] Revocation information: CRL information available
302
+ [I] Revocation information: OCSP information available
303
+ [I] Revocation status: certificate not revoked
304
+ [I] Extensions:
305
+ [I] authorityKeyIdentifier = keyid:40:09:61:67:F0:BC:83:71:4F:DE:12:08:2C:6F:D4:D4:2B:76:3D:96,
306
+ [I] subjectKeyIdentifier = D0:F8:D6:82:36:B5:5C:AC:2D:9A:8E:7B:D9:D5:E6:99:38:B6:8C:FE
307
+ [I] keyUsage = critical, Digital Signature
308
+ [I] basicConstraints = critical, CA:FALSE
309
+ [I] extendedKeyUsage = TLS Web Server Authentication, TLS Web Client Authentication
310
+ [I] certificatePolicies = Policy: 1.3.6.1.4.1.6449.1.2.2.7, CPS: https://secure.comodo.com/CPS, Policy: 2.23.140.1.2.1,
311
+ [I] crlDistributionPoints = , Full Name:, URI:http://crl.comodoca4.com/COMODOECCDomainValidationSecureServerCA2.crl,
312
+ [I] authorityInfoAccess = CA Issuers - URI:http://crt.comodoca4.com/COMODOECCDomainValidationSecureServerCA2.crt, OCSP - URI:http://ocsp.comodoca4.com,
313
+ [I] Hash: 1ae6362e4fc377cccb6df6261838a5d9bb49663d
314
+ https://censys.io/certificates?q=1ae6362e4fc377cccb6df6261838a5d9bb49663d
315
+ https://crt.sh/?q=1ae6362e4fc377cccb6df6261838a5d9bb49663d
316
+
317
+ Configuration Information:
318
+ Protocol Support:
319
+ [I] TLS 1.0
320
+ [I] TLS 1.1
321
+ [I] TLS 1.2
322
+
323
+ Cipher Suite Support:
324
+ [I] TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 - 128-bits - ECDHE-256-bits
325
+ [I] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 - 128-bits - ECDHE-256-bits
326
+ [I] TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA - 128-bits - ECDHE-256-bits
327
+ [I] TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 - 256-bits - ECDHE-256-bits
328
+ [I] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 - 256-bits - ECDHE-256-bits
329
+ [I] TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA - 256-bits - ECDHE-256-bits
330
+ [W] TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA - 112-bits - ECDHE-256-bits
331
+ [I] TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 - 256-bits - ECDHE-256-bits
332
+ [I] OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 - 256-bits - ECDHE-256-bits
333
+
334
+ Handshake Simulation:
335
+ [E] Android 2.3.7 - Simulation Failed
336
+ [I] Android 4.0.4 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
337
+ [I] Android 4.1.1 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
338
+ [I] Android 4.2.2 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
339
+ [I] Android 4.3 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
340
+ [I] Android 4.4.2 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
341
+ [I] Android 5.0.0 - TLS 1.2 - OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
342
+ [I] Android 6.0 - TLS 1.2 - OLD_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
343
+ [I] Baidu Jan 2015 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
344
+ [I] BingPreview Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
345
+ [I] Chrome 51 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
346
+ [I] Firefox 31.3.0 ESR / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
347
+ [I] Firefox 46 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
348
+ [I] Firefox 47 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
349
+ [I] Googlebot Feb 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
350
+ [E] IE 6 / XP - Simulation Failed
351
+ [I] IE 7 / Vista - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
352
+ [E] IE 8 / XP - Simulation Failed
353
+ [I] IE 8-10 / Win 7 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
354
+ [I] IE 11 / Win 7 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
355
+ [I] IE 11 / Win 8.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
356
+ [I] IE 10 / Win Phone 8.0 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
357
+ [I] IE 11 / Win Phone 8.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
358
+ [I] IE 11 / Win Phone 8.1 Update - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
359
+ [I] IE 11 / Win 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
360
+ [I] Edge 13 / Win 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
361
+ [I] Edge 13 / Win Phone 10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
362
+ [E] Java 6u45 - Simulation Failed
363
+ [I] Java 7u25 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
364
+ [I] Java 8u31 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
365
+ [E] OpenSSL 0.9.8y - Simulation Failed
366
+ [I] OpenSSL 1.0.1l - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
367
+ [I] OpenSSL 1.0.2e - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
368
+ [I] Safari 5.1.9 / OS X 10.6.8 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
369
+ [I] Safari 6 / iOS 6.0.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
370
+ [I] Safari 6.0.4 / OS X 10.8.4 - TLS 1.0 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
371
+ [I] Safari 7 / iOS 7.1 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
372
+ [I] Safari 7 / OS X 10.9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
373
+ [I] Safari 8 / iOS 8.4 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
374
+ [I] Safari 8 / OS X 10.10 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
375
+ [I] Safari 9 / iOS 9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
376
+ [I] Safari 9 / OS X 10.11 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
377
+ [I] Apple ATS 9 / iOS 9 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
378
+ [I] Yahoo Slurp Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
379
+ [I] YandexBot Jan 2015 - TLS 1.2 - TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
380
+
381
+ Protocol & Vulnerability Information:
382
+ [I] DROWN: No
383
+ [I] Secure Renegotiation: secure renegotiation supported
384
+ [I] POODLE (SSL): No
385
+ [I] POODLE (TLS): No
386
+ [I] Downgrade Prevention: Yes
387
+ [I] Compression: No
388
+ [I] Heartbleed: No
389
+ [I] OpenSSL CCS (CVE-2014-0224): No
390
+ [I] OpenSSL Padding Oracle (CVE-2016-2107): No
391
+ [I] Forward Secrecy: Yes (all simulated clients)
392
+ [I] OCSP Stapling: Yes
393
+ [I] FREAK: No
394
+ [I] Logjam: No
395
+ [I] DH public server param (Ys) reuse: No
396
+
397
+ TLS Session Request Limit: Checking number of requests accepted...
398
+ .....
399
+ [I] TLS Session Request Limit: Connection terminated after 100 requests (TLS Reconnected)
400
+
401
+ [I] HSTS: Enabled (strict-transport-security: max-age=15552000; preload)
402
+
403
+ [W] '/sitemap.xml' found: https://adamcaudill.com/sitemap.xml
404
+
405
+ [W] '/readme.html' found: https://adamcaudill.com/readme.html
406
+
407
+ Searching for common directories...
408
+ [I] Found: 'https://adamcaudill.com/0/'
409
+ [I] Found Redirect: 'https://adamcaudill.com/1/ -> 'https://adamcaudill.com/2013/04/16/1password-pbkdf2-and-implementation-flaws/'
410
+ [I] Found Redirect: 'https://adamcaudill.com/2/ -> 'https://adamcaudill.com/2015/01/01/2014-a-year-in-review/'
411
+ [I] Found Redirect: 'https://adamcaudill.com/20/ -> 'https://adamcaudill.com/2015/01/01/2014-a-year-in-review/'
412
+ [I] Found: 'https://adamcaudill.com/2006/'
413
+ [I] Found: 'https://adamcaudill.com/2007/'
414
+ [I] Found: 'https://adamcaudill.com/2008/'
415
+ [I] Found: 'https://adamcaudill.com/2009/'
416
+ [I] Found: 'https://adamcaudill.com/2010/'
417
+ [I] Found: 'https://adamcaudill.com/2011/'
418
+ [I] Found: 'https://adamcaudill.com/2013/'
419
+ [I] Found: 'https://adamcaudill.com/2014/'
420
+ [I] Found: 'https://adamcaudill.com/2015/'
421
+ [I] Found: 'https://adamcaudill.com/2016/'
422
+ [I] Found Redirect: 'https://adamcaudill.com/A/ -> 'https://adamcaudill.com/2014/10/17/a-backdoor-by-any-other-name/'
423
+ [I] Found: 'https://adamcaudill.com/About/'
424
+ [I] Found Redirect: 'https://adamcaudill.com/B/ -> 'https://adamcaudill.com/2007/08/27/backups-with-jungledrive/'
425
+ [I] Found Redirect: 'https://adamcaudill.com/Blog/ -> 'https://adamcaudill.com/2006/06/04/blog-traffic-another-view/'
426
+ [I] Found Redirect: 'https://adamcaudill.com/C/ -> 'https://adamcaudill.com/2009/10/03/cancel-godaddys-domain-privacy/'
427
+ [I] Found Redirect: 'https://adamcaudill.com/D/ -> 'https://adamcaudill.com/2006/06/02/data-theft-its-happened-again/'
428
+ [I] Found Redirect: 'https://adamcaudill.com/E/ -> 'https://adamcaudill.com/2006/03/17/end-on-an-era/'
429
+ [I] Found Redirect: 'https://adamcaudill.com/F/ -> 'https://adamcaudill.com/2011/05/14/facebook-scams/'
430
+ [I] Found Redirect: 'https://adamcaudill.com/G/ -> 'https://adamcaudill.com/2009/07/19/getsatisfaction-is-it-worth-it/'
431
+ [I] Found Redirect: 'https://adamcaudill.com/H/ -> 'https://adamcaudill.com/2011/05/21/happy-20th-birthday-visual-basic/'
432
+ [I] Found Redirect: 'https://adamcaudill.com/I/ -> 'https://adamcaudill.com/2007/02/10/i-love-my-job/'
433
+ [I] Found Redirect: 'https://adamcaudill.com/Internet/ -> 'https://adamcaudill.com/2006/05/27/internet-explorer-7/'
434
+ [I] Found Redirect: 'https://adamcaudill.com/J/ -> 'https://adamcaudill.com/2014/07/23/jumping-through-hoops-dot-dot-dot/'
435
+ [I] Found Redirect: 'https://adamcaudill.com/L/ -> 'https://adamcaudill.com/lasers/'
436
+ [I] Found Redirect: 'https://adamcaudill.com/M/ -> 'https://adamcaudill.com/2006/09/23/make-xp-pretty/'
437
+ [I] Found Redirect: 'https://adamcaudill.com/N/ -> 'https://adamcaudill.com/2011/02/11/need-a-cheap-phone-charger-quick-buy-a-tracfone/'
438
+ [I] Found Redirect: 'https://adamcaudill.com/O/ -> 'https://adamcaudill.com/2006/06/17/of-victory-and-pair-programming/'
439
+ [I] Found Redirect: 'https://adamcaudill.com/P/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
440
+ [I] Found Redirect: 'https://adamcaudill.com/PHP/ -> 'https://adamcaudill.com/2014/04/19/phpmyid-fixing-abandoned-oss-software/'
441
+ [I] Found Redirect: 'https://adamcaudill.com/R/ -> 'https://adamcaudill.com/2011/01/28/rails-3-dreamhost-ps/'
442
+ [I] Found Redirect: 'https://adamcaudill.com/S/ -> 'https://adamcaudill.com/2016/05/22/seamless-phishing/'
443
+ [I] Found Redirect: 'https://adamcaudill.com/Security/ -> 'https://adamcaudill.com/2014/03/23/security-by-buzzword-why-i-dont-support-ensafer/'
444
+ [I] Found Redirect: 'https://adamcaudill.com/T/ -> 'https://adamcaudill.com/2007/01/21/task-management-with-tasks/'
445
+ [I] Found Redirect: 'https://adamcaudill.com/U/ -> 'https://adamcaudill.com/2007/03/22/under-the-weather/'
446
+ [I] Found Redirect: 'https://adamcaudill.com/US/ -> 'https://adamcaudill.com/2006/07/08/useful-notepad-tip/'
447
+ [I] Found Redirect: 'https://adamcaudill.com/V/ -> 'https://adamcaudill.com/2006/05/10/valleyschwag/'
448
+ [I] Found Redirect: 'https://adamcaudill.com/W/ -> 'https://adamcaudill.com/2006/11/28/want-a-free-copy-of-vista/'
449
+ [I] Found Redirect: 'https://adamcaudill.com/Windows/ -> 'https://adamcaudill.com/2007/03/01/windows-vista-user-experience-guidelines/'
450
+ [I] Found Redirect: 'https://adamcaudill.com/X/ -> 'https://adamcaudill.com/2007/01/25/xceed-datagrid-for-wpf-released-free/'
451
+ [I] Found Redirect: 'https://adamcaudill.com/XML/ -> 'https://adamcaudill.com/2006/09/03/xml-notepad-2006/'
452
+ [I] Found Redirect: 'https://adamcaudill.com/a/ -> 'https://adamcaudill.com/2014/10/17/a-backdoor-by-any-other-name/'
453
+ [I] Found: 'https://adamcaudill.com/about/'
454
+ [I] Found Redirect: 'https://adamcaudill.com/ad/ -> 'https://adamcaudill.com/2006/03/29/advanced-net-programming/'
455
+ [I] Found Redirect: 'https://adamcaudill.com/adv/ -> 'https://adamcaudill.com/2006/03/29/advanced-net-programming/'
456
+ [I] Found Redirect: 'https://adamcaudill.com/advanced/ -> 'https://adamcaudill.com/2006/03/29/advanced-net-programming/'
457
+ [I] Found Redirect: 'https://adamcaudill.com/asp/ -> 'https://adamcaudill.com/2007/01/25/aspnet-ajax/'
458
+ [I] Found Redirect: 'https://adamcaudill.com/atom/ -> 'https://adamcaudill.com/feed/atom/'
459
+ [I] Found Redirect: 'https://adamcaudill.com/avatars/ -> 'https://adamcaudill.com/2009/06/19/avatars-why-roll-your-own/'
460
+ [I] Found Redirect: 'https://adamcaudill.com/b/ -> 'https://adamcaudill.com/2007/08/27/backups-with-jungledrive/'
461
+ [I] Found Redirect: 'https://adamcaudill.com/back/ -> 'https://adamcaudill.com/2007/08/27/backups-with-jungledrive/'
462
+ [I] Found Redirect: 'https://adamcaudill.com/backup/ -> 'https://adamcaudill.com/2007/08/27/backups-with-jungledrive/'
463
+ [I] Found Redirect: 'https://adamcaudill.com/backups/ -> 'https://adamcaudill.com/2007/08/27/backups-with-jungledrive/'
464
+ [I] Found Redirect: 'https://adamcaudill.com/bb/ -> 'https://adamcaudill.com/2011/05/21/bbpress-20-beta-1-released/'
465
+ [I] Found Redirect: 'https://adamcaudill.com/bl/ -> 'https://adamcaudill.com/2006/06/04/blog-traffic-another-view/'
466
+ [I] Found Redirect: 'https://adamcaudill.com/blog/ -> 'https://adamcaudill.com/2006/06/04/blog-traffic-another-view/'
467
+ [I] Found Redirect: 'https://adamcaudill.com/blue/ -> 'https://adamcaudill.com/2006/06/04/blue-hole-waterfall/'
468
+ [I] Found Redirect: 'https://adamcaudill.com/build/ -> 'https://adamcaudill.com/2007/01/04/building-a-windows-powertoy/'
469
+ [I] Found Redirect: 'https://adamcaudill.com/buy/ -> 'https://adamcaudill.com/2006/12/19/buying-a-car/'
470
+ [I] Found Redirect: 'https://adamcaudill.com/c/ -> 'https://adamcaudill.com/2009/10/03/cancel-godaddys-domain-privacy/'
471
+ [I] Found Redirect: 'https://adamcaudill.com/ca/ -> 'https://adamcaudill.com/2009/10/03/cancel-godaddys-domain-privacy/'
472
+ [I] Found Redirect: 'https://adamcaudill.com/can/ -> 'https://adamcaudill.com/2009/10/03/cancel-godaddys-domain-privacy/'
473
+ [I] Found Redirect: 'https://adamcaudill.com/cc/ -> 'https://adamcaudill.com/ccsrch/'
474
+ [I] Found Redirect: 'https://adamcaudill.com/ccs/ -> 'https://adamcaudill.com/ccsrch/'
475
+ [I] Found Redirect: 'https://adamcaudill.com/cgi-bin// -> 'https://adamcaudill.com/cgi-bin/'
476
+ [I] Found Redirect: 'https://adamcaudill.com/ch/ -> 'https://adamcaudill.com/2010/08/06/christopher-adam-caudill-6lbs-7oz-born-822010/'
477
+ [I] Found Redirect: 'https://adamcaudill.com/com/ -> 'https://adamcaudill.com/2006/03/11/common-sense-email/'
478
+ [I] Found Redirect: 'https://adamcaudill.com/common/ -> 'https://adamcaudill.com/2006/03/11/common-sense-email/'
479
+ [I] Found Redirect: 'https://adamcaudill.com/crypto/ -> 'https://adamcaudill.com/2016/03/12/crypto-crisis-fear-over-freedom/'
480
+ [I] Found Redirect: 'https://adamcaudill.com/d/ -> 'https://adamcaudill.com/2006/06/02/data-theft-its-happened-again/'
481
+ [I] Found Redirect: 'https://adamcaudill.com/dat/ -> 'https://adamcaudill.com/2006/06/02/data-theft-its-happened-again/'
482
+ [I] Found Redirect: 'https://adamcaudill.com/data/ -> 'https://adamcaudill.com/2006/06/02/data-theft-its-happened-again/'
483
+ [I] Found Redirect: 'https://adamcaudill.com/de/ -> 'https://adamcaudill.com/2012/07/27/decrypting-spark-saved-passwords/'
484
+ [I] Found Redirect: 'https://adamcaudill.com/dec/ -> 'https://adamcaudill.com/2012/07/27/decrypting-spark-saved-passwords/'
485
+ [I] Found Redirect: 'https://adamcaudill.com/detail/ -> 'https://adamcaudill.com/2006/09/03/detailed-css-changes-in-ie7/'
486
+ [I] Found Redirect: 'https://adamcaudill.com/dev/ -> 'https://adamcaudill.com/2016/08/17/developers-placing-trust-in-strangers/'
487
+ [I] Found Redirect: 'https://adamcaudill.com/devel/ -> 'https://adamcaudill.com/2016/08/17/developers-placing-trust-in-strangers/'
488
+ [I] Found Redirect: 'https://adamcaudill.com/develop/ -> 'https://adamcaudill.com/2016/08/17/developers-placing-trust-in-strangers/'
489
+ [I] Found Redirect: 'https://adamcaudill.com/developer/ -> 'https://adamcaudill.com/2016/08/17/developers-placing-trust-in-strangers/'
490
+ [I] Found Redirect: 'https://adamcaudill.com/developers/ -> 'https://adamcaudill.com/2016/08/17/developers-placing-trust-in-strangers/'
491
+ [I] Found Redirect: 'https://adamcaudill.com/development/ -> 'https://adamcaudill.com/2006/04/11/development-abstraction/'
492
+ [I] Found Redirect: 'https://adamcaudill.com/do/ -> 'https://adamcaudill.com/2013/07/04/do-one-thing-right/'
493
+ [I] Found Redirect: 'https://adamcaudill.com/e/ -> 'https://adamcaudill.com/2006/03/17/end-on-an-era/'
494
+ [I] Found Redirect: 'https://adamcaudill.com/en/ -> 'https://adamcaudill.com/2006/03/17/end-on-an-era/'
495
+ [I] Found Redirect: 'https://adamcaudill.com/error/ -> 'https://adamcaudill.com/2011/05/16/errors-on-gem-install-mysql2/'
496
+ [I] Found Redirect: 'https://adamcaudill.com/errors/ -> 'https://adamcaudill.com/2011/05/16/errors-on-gem-install-mysql2/'
497
+ [I] Found Redirect: 'https://adamcaudill.com/event/ -> 'https://adamcaudill.com/2006/09/24/eventargs-no-need-to-pass-a-new-instance/'
498
+ [I] Found Redirect: 'https://adamcaudill.com/f/ -> 'https://adamcaudill.com/2011/05/14/facebook-scams/'
499
+ [I] Found: 'https://adamcaudill.com/feed/'
500
+ [I] Found: 'https://adamcaudill.com/files/'
501
+ [I] Found Redirect: 'https://adamcaudill.com/firefox/ -> 'https://adamcaudill.com/2006/09/17/firefox-toys-errorzilla/'
502
+ [I] Found Redirect: 'https://adamcaudill.com/first/ -> 'https://adamcaudill.com/2013/03/26/first-do-no-harm-developers-and-bad-apis/'
503
+ [I] Found Redirect: 'https://adamcaudill.com/fr/ -> 'https://adamcaudill.com/2007/02/06/from-outlook-to-gmail-to-the-bat/'
504
+ [I] Found Redirect: 'https://adamcaudill.com/g/ -> 'https://adamcaudill.com/2009/07/19/getsatisfaction-is-it-worth-it/'
505
+ [I] Found Redirect: 'https://adamcaudill.com/get/ -> 'https://adamcaudill.com/2009/07/19/getsatisfaction-is-it-worth-it/'
506
+ [I] Found Redirect: 'https://adamcaudill.com/go/ -> 'https://adamcaudill.com/2011/01/12/google-chrome-and-h-264/'
507
+ [I] Found Redirect: 'https://adamcaudill.com/google/ -> 'https://adamcaudill.com/2011/01/12/google-chrome-and-h-264/'
508
+ [I] Found Redirect: 'https://adamcaudill.com/gp/ -> 'https://adamcaudill.com/2012/05/13/gpg4win-idea/'
509
+ [I] Found Redirect: 'https://adamcaudill.com/h/ -> 'https://adamcaudill.com/2011/05/21/happy-20th-birthday-visual-basic/'
510
+ [I] Found Redirect: 'https://adamcaudill.com/holiday/ -> 'https://adamcaudill.com/2006/12/23/holiday-schwag/'
511
+ [I] Found Redirect: 'https://adamcaudill.com/host/ -> 'https://adamcaudill.com/2011/04/11/hosting-change/'
512
+ [I] Found Redirect: 'https://adamcaudill.com/hosting/ -> 'https://adamcaudill.com/2011/04/11/hosting-change/'
513
+ [I] Found Redirect: 'https://adamcaudill.com/how/ -> 'https://adamcaudill.com/2006/02/26/how-it-projects-really-work/'
514
+ [I] Found Redirect: 'https://adamcaudill.com/hp/ -> 'https://adamcaudill.com/2012/04/23/hp-folio-13/'
515
+ [I] Found Redirect: 'https://adamcaudill.com/i/ -> 'https://adamcaudill.com/2007/02/10/i-love-my-job/'
516
+ [I] Found Redirect: 'https://adamcaudill.com/ie/ -> 'https://adamcaudill.com/2007/01/10/ie-developer-toolbar/'
517
+ [I] Found Redirect: 'https://adamcaudill.com/in/ -> 'https://adamcaudill.com/2006/07/07/in-comes-the-schwag/'
518
+ [I] Found Redirect: 'https://adamcaudill.com/install/ -> 'https://adamcaudill.com/2006/11/18/installing-vista/'
519
+ [I] Found Redirect: 'https://adamcaudill.com/internet/ -> 'https://adamcaudill.com/2006/05/27/internet-explorer-7/'
520
+ [I] Found Redirect: 'https://adamcaudill.com/it/ -> 'https://adamcaudill.com/2006/02/26/its-official-ie7-is-cool/'
521
+ [I] Found Redirect: 'https://adamcaudill.com/j/ -> 'https://adamcaudill.com/2014/07/23/jumping-through-hoops-dot-dot-dot/'
522
+ [I] Found Redirect: 'https://adamcaudill.com/jump/ -> 'https://adamcaudill.com/2014/07/23/jumping-through-hoops-dot-dot-dot/'
523
+ [I] Found Redirect: 'https://adamcaudill.com/k/ -> 'https://adamcaudill.com/2006/09/16/kill-capslock/'
524
+ [I] Found Redirect: 'https://adamcaudill.com/l/ -> 'https://adamcaudill.com/lasers/'
525
+ [I] Found Redirect: 'https://adamcaudill.com/link/ -> 'https://adamcaudill.com/2012/06/06/linkedin-a-little-common-sense/'
526
+ [I] Found Redirect: 'https://adamcaudill.com/m/ -> 'https://adamcaudill.com/2006/09/23/make-xp-pretty/'
527
+ [I] Found Redirect: 'https://adamcaudill.com/microsoft/ -> 'https://adamcaudill.com/2007/01/21/microsoft-mice-another-reason-to-love-them/'
528
+ [I] Found Redirect: 'https://adamcaudill.com/mini/ -> 'https://adamcaudill.com/2012/05/13/minipwner/'
529
+ [I] Found Redirect: 'https://adamcaudill.com/monitor/ -> 'https://adamcaudill.com/2012/06/10/monitor-iphone-http-s-traffic-with-fiddler/'
530
+ [I] Found Redirect: 'https://adamcaudill.com/my/ -> 'https://adamcaudill.com/2012/03/31/my-5-minutes-of-infamy/'
531
+ [I] Found Redirect: 'https://adamcaudill.com/n/ -> 'https://adamcaudill.com/2011/02/11/need-a-cheap-phone-charger-quick-buy-a-tracfone/'
532
+ [I] Found Redirect: 'https://adamcaudill.com/ne/ -> 'https://adamcaudill.com/2011/02/11/need-a-cheap-phone-charger-quick-buy-a-tracfone/'
533
+ [I] Found Redirect: 'https://adamcaudill.com/net/ -> 'https://adamcaudill.com/2006/11/08/net-framework-30-released/'
534
+ [I] Found Redirect: 'https://adamcaudill.com/new/ -> 'https://adamcaudill.com/2016/01/01/new-atheism-the-philosophy-of-atheism/'
535
+ [I] Found Redirect: 'https://adamcaudill.com/no/ -> 'https://adamcaudill.com/2006/10/05/not-not-a-good-idea/'
536
+ [I] Found Redirect: 'https://adamcaudill.com/o/ -> 'https://adamcaudill.com/2006/06/17/of-victory-and-pair-programming/'
537
+ [I] Found Redirect: 'https://adamcaudill.com/of/ -> 'https://adamcaudill.com/2006/06/17/of-victory-and-pair-programming/'
538
+ [I] Found Redirect: 'https://adamcaudill.com/on/ -> 'https://adamcaudill.com/2010/06/19/on-hiring/'
539
+ [I] Found Redirect: 'https://adamcaudill.com/open/ -> 'https://adamcaudill.com/2007/02/02/opendns/'
540
+ [I] Found Redirect: 'https://adamcaudill.com/p/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
541
+ [I] Found Redirect: 'https://adamcaudill.com/page2/ -> 'https://adamcaudill.com/page/2/'
542
+ [I] Found Redirect: 'https://adamcaudill.com/pass/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
543
+ [I] Found Redirect: 'https://adamcaudill.com/passw/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
544
+ [I] Found Redirect: 'https://adamcaudill.com/passwor/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
545
+ [I] Found Redirect: 'https://adamcaudill.com/password/ -> 'https://adamcaudill.com/2013/05/07/password-hashing-no-silver-bullets/'
546
+ [I] Found: 'https://adamcaudill.com/pgp/'
547
+ [I] Found: 'https://adamcaudill.com/photo/'
548
+ [I] Found Redirect: 'https://adamcaudill.com/php/ -> 'https://adamcaudill.com/2014/04/19/phpmyid-fixing-abandoned-oss-software/'
549
+ [I] Found Redirect: 'https://adamcaudill.com/pl/ -> 'https://adamcaudill.com/2016/05/01/plsql-developer-http-to-command-execution/'
550
+ [I] Found Redirect: 'https://adamcaudill.com/pls/ -> 'https://adamcaudill.com/2016/05/01/plsql-developer-http-to-command-execution/'
551
+ [I] Found Redirect: 'https://adamcaudill.com/power/ -> 'https://adamcaudill.com/2006/11/15/power-users-rejoice/'
552
+ [I] Found Redirect: 'https://adamcaudill.com/pr/ -> 'https://adamcaudill.com/2008/12/21/programmers-are-expensive/'
553
+ [I] Found Redirect: 'https://adamcaudill.com/pro/ -> 'https://adamcaudill.com/2008/12/21/programmers-are-expensive/'
554
+ [I] Found Redirect: 'https://adamcaudill.com/prog/ -> 'https://adamcaudill.com/2008/12/21/programmers-are-expensive/'
555
+ [I] Found Redirect: 'https://adamcaudill.com/program/ -> 'https://adamcaudill.com/2008/12/21/programmers-are-expensive/'
556
+ [I] Found Redirect: 'https://adamcaudill.com/q/ -> 'https://adamcaudill.com/2012/04/05/quickpacket-hosting/'
557
+ [I] Found Redirect: 'https://adamcaudill.com/r/ -> 'https://adamcaudill.com/2011/01/28/rails-3-dreamhost-ps/'
558
+ [I] Found Redirect: 'https://adamcaudill.com/read/ -> 'https://adamcaudill.com/reading/'
559
+ [I] Found Redirect: 'https://adamcaudill.com/religion/ -> 'https://adamcaudill.com/2015/01/12/religion-free-speech-freedom-from-offense/'
560
+ [I] Found: 'https://adamcaudill.com/resume/'
561
+ [I] Found Redirect: 'https://adamcaudill.com/rss/ -> 'https://adamcaudill.com/feed/'
562
+ [I] Found Redirect: 'https://adamcaudill.com/rss2/ -> 'https://adamcaudill.com/feed/'
563
+ [I] Found Redirect: 'https://adamcaudill.com/ru/ -> 'https://adamcaudill.com/2006/09/17/running-regedit-as-system/'
564
+ [I] Found Redirect: 'https://adamcaudill.com/run/ -> 'https://adamcaudill.com/2006/09/17/running-regedit-as-system/'
565
+ [I] Found Redirect: 'https://adamcaudill.com/s/ -> 'https://adamcaudill.com/2016/05/22/seamless-phishing/'
566
+ [I] Found Redirect: 'https://adamcaudill.com/se/ -> 'https://adamcaudill.com/2016/05/22/seamless-phishing/'
567
+ [I] Found Redirect: 'https://adamcaudill.com/secure/ -> 'https://adamcaudill.com/2010/02/01/secure-password-storage/'
568
+ [I] Found Redirect: 'https://adamcaudill.com/security/ -> 'https://adamcaudill.com/2014/03/23/security-by-buzzword-why-i-dont-support-ensafer/'
569
+ [I] Found Redirect: 'https://adamcaudill.com/server/ -> 'https://adamcaudill.com/2006/03/25/server-move/'
570
+ [I] Found Redirect: 'https://adamcaudill.com/site/ -> 'https://adamcaudill.com/2006/10/30/site-updates/'
571
+ [I] Found Redirect: 'https://adamcaudill.com/sp/ -> 'https://adamcaudill.com/2006/12/19/spam-gmail/'
572
+ [I] Found Redirect: 'https://adamcaudill.com/spam/ -> 'https://adamcaudill.com/2006/12/19/spam-gmail/'
573
+ [I] Found Redirect: 'https://adamcaudill.com/st/ -> 'https://adamcaudill.com/2009/07/18/start-up-tools-microsoft-bizspark/'
574
+ [I] Found Redirect: 'https://adamcaudill.com/star/ -> 'https://adamcaudill.com/2009/07/18/start-up-tools-microsoft-bizspark/'
575
+ [I] Found Redirect: 'https://adamcaudill.com/start/ -> 'https://adamcaudill.com/2009/07/18/start-up-tools-microsoft-bizspark/'
576
+ [I] Found Redirect: 'https://adamcaudill.com/stat/ -> 'https://adamcaudill.com/2010/07/30/state-of-the-virus-art/'
577
+ [I] Found Redirect: 'https://adamcaudill.com/state/ -> 'https://adamcaudill.com/2010/07/30/state-of-the-virus-art/'
578
+ [I] Found Redirect: 'https://adamcaudill.com/super/ -> 'https://adamcaudill.com/2006/04/07/superstars-monkeys/'
579
+ [I] Found Redirect: 'https://adamcaudill.com/sw/ -> 'https://adamcaudill.com/2009/06/13/switching-hosts-again/'
580
+ [I] Found Redirect: 'https://adamcaudill.com/t/ -> 'https://adamcaudill.com/2007/01/21/task-management-with-tasks/'
581
+ [I] Found Redirect: 'https://adamcaudill.com/task/ -> 'https://adamcaudill.com/2007/01/21/task-management-with-tasks/'
582
+ [I] Found Redirect: 'https://adamcaudill.com/tool/ -> 'https://adamcaudill.com/tools/'
583
+ [I] Found: 'https://adamcaudill.com/tools/'
584
+ [I] Found Redirect: 'https://adamcaudill.com/u/ -> 'https://adamcaudill.com/2007/03/22/under-the-weather/'
585
+ [I] Found Redirect: 'https://adamcaudill.com/up/ -> 'https://adamcaudill.com/2012/10/07/upek-windows-password-decryption/'
586
+ [I] Found Redirect: 'https://adamcaudill.com/us/ -> 'https://adamcaudill.com/2006/07/08/useful-notepad-tip/'
587
+ [I] Found Redirect: 'https://adamcaudill.com/v/ -> 'https://adamcaudill.com/2006/05/10/valleyschwag/'
588
+ [I] Found Redirect: 'https://adamcaudill.com/vb/ -> 'https://adamcaudill.com/2006/04/02/vb-the-dumbing-of-a-great-language/'
589
+ [I] Found Redirect: 'https://adamcaudill.com/vi/ -> 'https://adamcaudill.com/2013/10/23/vicidial-multiple-vulnerabilities/'
590
+ [I] Found Redirect: 'https://adamcaudill.com/vista/ -> 'https://adamcaudill.com/2006/11/16/vista-available-via-msdn/'
591
+ [I] Found Redirect: 'https://adamcaudill.com/w/ -> 'https://adamcaudill.com/2006/11/28/want-a-free-copy-of-vista/'
592
+ [I] Found Redirect: 'https://adamcaudill.com/web/ -> 'https://adamcaudill.com/2006/05/17/web-developer-toolbar-menu-for-opera/'
593
+ [I] Found Redirect: 'https://adamcaudill.com/what/ -> 'https://adamcaudill.com/2006/04/24/what-a-surprise/'
594
+ [I] Found Redirect: 'https://adamcaudill.com/why/ -> 'https://adamcaudill.com/2011/10/15/why-cringely-is-wrong-about-java/'
595
+ [I] Found Redirect: 'https://adamcaudill.com/wiki/ -> 'https://adamcaudill.com/2010/12/01/wikileaks-biggest-problem-julian-assange/'
596
+ [I] Found Redirect: 'https://adamcaudill.com/win/ -> 'https://adamcaudill.com/2007/03/01/windows-vista-user-experience-guidelines/'
597
+ [I] Found Redirect: 'https://adamcaudill.com/windows/ -> 'https://adamcaudill.com/2007/03/01/windows-vista-user-experience-guidelines/'
598
+ [I] Found Redirect: 'https://adamcaudill.com/wink/ -> 'https://adamcaudill.com/2006/04/15/wink-20/'
599
+ [I] Found Redirect: 'https://adamcaudill.com/word/ -> 'https://adamcaudill.com/2006/07/30/wordpress-204/'
600
+ [I] Found Redirect: 'https://adamcaudill.com/wordpress/ -> 'https://adamcaudill.com/2006/07/30/wordpress-204/'
601
+ [I] Found Redirect: 'https://adamcaudill.com/work/ -> 'https://adamcaudill.com/2008/12/08/working-late-again/'
602
+ [I] Found: 'https://adamcaudill.com/wp-content/'
603
+ [I] Found: 'https://adamcaudill.com/wp-includes/'
604
+ [I] Found Redirect: 'https://adamcaudill.com/x/ -> 'https://adamcaudill.com/2007/01/25/xceed-datagrid-for-wpf-released-free/'
605
+ [I] Found Redirect: 'https://adamcaudill.com/xml/ -> 'https://adamcaudill.com/2006/09/03/xml-notepad-2006/'
606
+ [I] Found Redirect: 'https://adamcaudill.com/y/ -> 'https://adamcaudill.com/2012/07/12/yahoos-associated-content-hacked/'
607
+ [I] Found Redirect: 'https://adamcaudill.com/yahoo/ -> 'https://adamcaudill.com/2012/07/12/yahoos-associated-content-hacked/'
608
+
609
+ [I] Meta Generator: WordPress 4.6.1
610
+ Scan complete.
420
611
  ```
421
612
 
422
613
  ### About The Output
@@ -56,6 +56,7 @@ module Yawast
56
56
  puts
57
57
  end
58
58
  rescue => e
59
+ puts
59
60
  Yawast::Utilities.puts_error "SSL Labs Error: #{e.message}"
60
61
  end
61
62
  end
@@ -466,6 +467,32 @@ module Yawast
466
467
  Yawast::Utilities.puts_info "\t\t\tDH public server param (Ys) reuse: No"
467
468
  end
468
469
 
470
+ if ep.details.protocol_intolerance > 0
471
+ if ep.details.protocol_intolerance & 1 != 0
472
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.0"
473
+ end
474
+
475
+ if ep.details.protocol_intolerance & (1<<1) != 0
476
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.1"
477
+ end
478
+
479
+ if ep.details.protocol_intolerance & (1<<2) != 0
480
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.2"
481
+ end
482
+
483
+ if ep.details.protocol_intolerance & (1<<3) != 0
484
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.3"
485
+ end
486
+
487
+ if ep.details.protocol_intolerance & (1<<4) != 0
488
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 1.152"
489
+ end
490
+
491
+ if ep.details.protocol_intolerance & (1<<5) != 0
492
+ Yawast::Utilities.puts_warn "\t\t\tProtocol Intolerance: TLS 2.152"
493
+ end
494
+ end
495
+
469
496
  puts
470
497
  end
471
498
 
data/lib/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Yawast
2
- VERSION = '0.2.1'
2
+ VERSION = '0.2.2'
3
3
  end
data/yawast.gemspec CHANGED
@@ -13,7 +13,7 @@ Gem::Specification.new do |s|
13
13
  s.license = 'MIT'
14
14
  s.rubyforge_project = "yawast"
15
15
 
16
- s.add_runtime_dependency 'ssllabs', '~> 1.11'
16
+ s.add_runtime_dependency 'ssllabs', '~> 1.24'
17
17
  s.add_runtime_dependency 'commander', '~> 4.4'
18
18
  s.add_runtime_dependency 'highline', '~> 1.7'
19
19
  s.add_runtime_dependency 'openssl-extensions', '~> 1.2'
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: yawast
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.2.1
4
+ version: 0.2.2
5
5
  platform: ruby
6
6
  authors:
7
7
  - Adam Caudill
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2016-09-03 00:00:00.000000000 Z
11
+ date: 2016-09-07 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: ssllabs
@@ -16,14 +16,14 @@ dependencies:
16
16
  requirements:
17
17
  - - "~>"
18
18
  - !ruby/object:Gem::Version
19
- version: '1.11'
19
+ version: '1.24'
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - "~>"
25
25
  - !ruby/object:Gem::Version
26
- version: '1.11'
26
+ version: '1.24'
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: commander
29
29
  requirement: !ruby/object:Gem::Requirement
@@ -105,6 +105,7 @@ files:
105
105
  - ".gitignore"
106
106
  - ".ruby-version"
107
107
  - ".travis.yml"
108
+ - CHANGELOG.md
108
109
  - Gemfile
109
110
  - README.md
110
111
  - Rakefile