Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- root@kali:~/Desktop/crack vulnerability# python crack.py -t www.netflix.com
- [SET] target => www.netflix.com
- [SET] IP Address => 52.209.209.98
- [SET] target port => 443
- [SET] include => All Module
- [INF] Check the SSL..
- [RES] This target supports SSL..
- [INF] Scan Anonymous Cipher..
- - [LOG] IP Check Ok.
- - [LOG] Start SSL Connection
- - [LOG] Analysis SSL Information
- - [LOG] 'Connection success'
- [INF] Scan CRIME(SPDY)..
- - [LOG] IP Check Ok.
- - [LOG] Start SSL Connection
- - [LOG] Analysis SSL Information
- - [LOG] 'Includes SPDY version <4'
- [INF] Scan CCS Injection..
- - [LOG] TLSv1.2 52.209.209.98:443 rejected early CCS
- - [LOG] TLSv1.1 52.209.209.98:443 rejected early CCS
- - [LOG] TLSv1 52.209.209.98:443 rejected early CCS
- - [LOG] SSLv3 52.209.209.98:443 rejected early CCS
- [INF] Scan HeartBleed..
- - [LOG] Sending Client Hello...
- - [LOG] Waiting for Server Hello...
- - [LOG] Sending heartbeat request..
- [INF] Scan SSLv3 POODLE..
- - [LOG] Allow SSLv3 Protocol
- [INF] Scan OpenSSL FREAK..
- - [LOG] IP Check Ok.
- - [LOG] Start SSL Connection / Gathering Information
- - [LOG] Ending Get Information
- - [LOG] 'Cipher is EXP' not in Response
- [INF] Scan OpenSSL LOGJAM..
- - [LOG] IP Check Ok.
- - [LOG] Start SSL Connection / Gathering Information
- - [LOG] Ending Get Information
- - [LOG] 'Cipher is DEH' not in Response
- [INF] Scan SSLv2 DROWN..
- - [LOG] Not connected SSLv2
- [RES] Finish scan all vulnerability..
- _________________________________________________________________________
- [REPORT]
- [TARGET]: 52.209.209.98
- [PORT]: 443
- [SCAN TIME]: 2017-11-26 17:21:15.878819
- [VULNERABILITY]
- Vulnerability CVE CVSS v2 Base Score State
- ================ ============= ========================== ===============
- Anonymous Cipher CVE-2007-1858 AV:N/AC:H/Au:N/C:P/I:N/A:N Not Vulnerable.
- CRIME(SPDY) CVE-2012-4929 AV:N/AC:H/Au:N/C:P/I:N/A:N Vulnerable!
- HeartBleed CVE-2014-0160 AV:N/AC:L/Au:N/C:P/I:N/A:N Not Vulnerable.
- CCS Injection CVE-2014-0224 AV:N/AC:M/Au:N/C:P/I:P/A:P Not Vulnerable.
- SSLv3 POODLE CVE-2014-3566 AV:N/AC:M/Au:N/C:P/I:N/A:N Vulnerable!
- OpenSSL FREAK CVE-2015-0204 AV:N/AC:M/Au:N/C:N/I:P/A:N Not Vulnerable.
- OpenSSL LOGJAM CVE-2015-4000 AV:N/AC:M/Au:N/C:N/I:P/A:N Not Vulnerable.
- SSLv2 DROWN CVE-2016-0800 AV:N/AC:M/Au:N/C:P/I:N/A:N Not Vulnerable.
Add Comment
Please, Sign In to add comment