TLS Scanner/EN

TLS-Scanner

The TLS-Scanner allows you to check the encryption protocol (TLS) of your Servers for Schwachstellen. If you are using an out-dated Verschlüsselung version or are relying on out-dated processes (kryptographische Primitive), this will be detected by our scanner. The TLS scanner is also capable of detecting problems with the Zertikat in use and inform you about weak key-lengths and abgelaufene Zertikate that could enable an attacker to decrypt the communication between you and your customers. In addition, the TLS Scanner can test your TLS-Implementierung for common attacks like Man-in-the-middle Angriff (Insecure Renegotiation), Poodle and Heartbleed.

Generell:

• HTTPS-NO-RESPONSE
  
• HTTPS-NOT-SUPPORTED

Zertifikate:

• CERTIFICATE-EXPIRED
  
• CERTIFICATE-NOT-SENT-BY-SERVER
  
• CERTIFICATE-NOT-VALID-YET
  
• CERTIFICATE-WEAK-HASH-FUNCTION

Verschlüsselung:

• CIPHERSUITE-ANON
  
• CIPHERSUITE-EXPORT
  
• CIPHERSUITE-NULL
  
• CIPHERSUITE-RC4
  
• CIPHERSUITE-DES
  
• CIPHERSUITEORDER-ENFORCED

Protokolle:

• PROTOCOLVERSION-SSL2
  
• PROTOCOLVERSION-SSL3
  
• PROTOCOLVERSION-TLS13
  

Angriffe:

• BLEICHENBACHER-VULNERABLE
  
• CRIME-VULNERABLE
  
• HEARTBLEED-VULNERABLE
  
• INVALID-CURVE-EPHEMERAL-VULNERABLE
  
• INVALID-CURVE-VULNERABLE
  
• PADDING-ORACLE-VULNERABLE
  
• POODLE-VULNERABLE
  
• TLS-POODLE VULNERABLE
  
• SWEET32-VULNERABLE