<br>== TLS-Scanner ==
'''<span style="colorThe TLS Scanner allows you to check the encryption protocol ([https://en.wikipedia.org/wiki/Transport_Layer_Security TLS]) of your servers for vulnerability. If you are using an out-dated encoding version or are relying on out-dated processes ([https://en.wikipedia.org/wiki/Cryptographic_primitive Cryptographic Primitive]), this will be detected by our scanner. The TLS scanner is also capable of detecting problems with the [[Certificate|certificate]] in use and inform you about weak key-lengths and [[Zertifikate#c31622">Was_tun.2C_wenn_ein_SSL-Zertifikat_abgelaufen_ist.3F|expired certificates (German only)]] that could enable an attacker to decrypt the communication between you and your customers. In addition, the TLS Scanner can test your TLSimplementation for common attacks like [https://en.wikipedia.org/wiki/Man-in-the-middle_attack man-in-Scanner<span>'''<br>the-middle-attack] (Insecure Renegotiation), Poodle and [[Heartbleed-Vulnerability/EN/Background|Heartbleed]].
The <poem>'''''Information:'''''[[TLS Scanner|TLSResponse-Time-Scanner]] allows you to check the encryption protocol ([[Transport Layer Security|TLS]]) of your [[Server|servers]] for [[SchwachstellenExceeded/DEEN |vulnerability]]. If you are using an outHTTPS-dated [[Verschlüsselung|encoding]] version or are relying on outNO-dated processes ([https://de.wikipedia.org/wiki/Kryptographisches_Primitiv kryptographische PrimitiveRESPONSE]), this will be detected by our scanner. The TLS scanner is also capable of detecting problems with the [[Zertifikate|certificate]] in use and inform you about weak key-lengths and [[Zertifikate#Was_tun.2C_wenn_ein_SSLNo-Zertifikat_abgelaufen_ist.3F|expired certificates]] that could enable an attacker to decrypt the communication between you and your customers. In addition, the TLS Scanner can test your [[Transport Layer Security|TLS-Implementierung]] for common attacks like [[Man-in-the-middleSupport/EN|Man-in-the-middle Angriff]] ([[Man-inHTTPS-theNOT-middle|Insecure RenegotiationSUPPORTED]]), [[Poodle]] and [[Heartbleed-Vulnerability</EN/Background|Heartbleed]].poem>
'''''General:'''''*[[Response-Time-Exceeded/EN | HTTPS-NO-RESPONSE]]<brpoem>*[[No-TLS-Support/EN|HTTPS-NOT-SUPPORTED]]'''''ZertifikateCertificates'':'''*[[Certificate-Expired/EN|CERTIFICATE-EXPIRED]]<br>*[[Certificate-Not-Sent/EN|CERTIFICATE-NOT-SENT-BY-SERVER]]<br>*[[Certificate-Not-Valid/EN|CERTIFICATE-NOT-VALID-YET]]<br>*[[Weak-Encryption/EN|CERTIFICATE-WEAK-HASH-FUNCTION]]</poem> <poem>'''''EncodingCryptography'':'''*[[Key-Exchange-Method/EN|CIPHERSUITE-ANON]]<br>*[[Weakened-Encryption-Protocol/EN|CIPHERSUITE-EXPORT]]<br>*[[Unencrypted-Communication/EN|CIPHERSUITE-NULL]]<br>*[[UnsichereInsecure-VerschluesselungsfunktionEncryption-RC4Function_RC4/EN|CIPHERSUITE-RC4]]<br>*[[Weak-DES-Encryption-Protocol/EN|CIPHERSUITE-DES]]<br>*[[Encryption-Method-Clientalgorithm/EN|CIPHERSUITEORDER-ENFORCED]]'''''Protokolle'':'''*[[Outdated-Protocol-Version-SSL2/EN|PROTOCOLVERSION-SSL2]]<br>*[[Outdated-Protocol-Version-SSL3/EN|PROTOCOLVERSION-SSL3]]<br>*[[PROTOCOLVERSION_TLS13Protocol-Version-TLS13-Found/EN|PROTOCOLVERSION-TLS13]]</poem> <brpoem>
'''''Attacks'':'''
*[[Bleichenbacher-Vulnerability/EN|BLEICHENBACHER-VULNERABLE]]<br>*[[CRIME-Vulnerability/EN|CRIME-VULNERABLE]]<br>*[[Heartbleed-Vulnerability/EN|HEARTBLEED-VULNERABLE]]<br>*[[Invalid-Curve-Ephemeral-Vulnerability/ENDEEN|INVALID-CURVE-EPHEMERAL-VULNERABLE]]<br>*[[Invalid-Curve-Vulnerability/EN|INVALID-CURVE-VULNERABLE]]<br>*[[Padding-Oracle-Vulnerability/EN|PADDING-ORACLE-VULNERABLE]]<br>*[[POODLE-Vulnerability/EN|POODLE-VULNERABLE]]<br>*[[TlsTLS-PoodlePOODLE-Vulnerability/EN|TLS-POODLE VULNERABLE]]<br>*[[Sweet32-Vulnerability/EN|SWEET32-VULNERABLE]]<br/poem>
