add ipv6 only support
add a if function to check if host is ipv6 only and if yes, then run nmap with option -6
This commit is contained in:
parent
6279a4670c
commit
c11a244cc6
1 changed files with 16 additions and 6 deletions
22
sslchecker
22
sslchecker
|
|
@ -1,5 +1,4 @@
|
|||
#!/usr/bin/env bash
|
||||
|
||||
#!/bin/bash
|
||||
usage()
|
||||
{
|
||||
cat <<EOF
|
||||
|
|
@ -71,6 +70,11 @@ RemoteCheck()
|
|||
nmap --script ssl-cert -p $port $host -oX - | xmlstarlet sel -t -m '/nmaprun/host/ports/port' -o "CA=\"" -v 'script/table/elem[@key="organizationName"]' -o "\"" -o $'\n' -o "BEGINN=\"" -v 'script/table/elem[@key="notBefore"]' -o "\"" -o $'\n' -o "ENDING=\"" -v 'script/table/elem[@key="notAfter"]' -o "\"" -o $'\n' -o "DOMAINS=\"" -v 'script/table/table[elem="X509v3 Subject Alternative Name"]/elem[@key="value"]' -o "\"" - 2>/dev/null | sed -e 's/DNS://g'
|
||||
}
|
||||
|
||||
RemoteCheck6()
|
||||
{
|
||||
nmap -6 --script ssl-cert -p $port $host -oX - | xmlstarlet sel -t -m '/nmaprun/host/ports/port' -o "CA=\"" -v 'script/table/elem[@key="organizationName"]' -o "\"" -o $'\n' -o "BEGINN=\"" -v 'script/table/elem[@key="notBefore"]' -o "\"" -o $'\n' -o "ENDING=\"" -v 'script/table/elem[@key="notAfter"]' -o '"' -o $'\n' -o "DOMAINS=\"" -v 'script/table/table[elem="X509v3 Subject Alternative Name"]/elem[@key="value"]' -o "\"" - 2>/dev/null | sed -e 's/DNS://g'
|
||||
}
|
||||
|
||||
Records()
|
||||
{
|
||||
ipv4s=`dig +short A $host`
|
||||
|
|
@ -96,7 +100,13 @@ if [ -z "$port" ]; then
|
|||
port="443"
|
||||
fi
|
||||
|
||||
source <(RemoteCheck)
|
||||
if RemoteCheck 2>&1 | grep -q -s -cim1 "not to any IPv4 address."; then
|
||||
source <(RemoteCheck6);
|
||||
else
|
||||
source <(RemoteCheck);
|
||||
fi
|
||||
|
||||
#source <(RemoteCheck)
|
||||
|
||||
echo -e '\e[90m\e[1m\e[104mCert is valid for:\e[0m'
|
||||
echo \ $DOMAINS | sed 's/,/\n/g'
|
||||
|
|
@ -110,12 +120,12 @@ Records
|
|||
fi
|
||||
|
||||
if [ "$source" == "update" ]; then
|
||||
curl https://raw.githubusercontent.com/Kaisa-Marysia/sslchecker/main/sslchecker -o /usr/bin/sslchecker
|
||||
curl https://git.elektrollart.org/Elektroll/sslchecker/raw/branch/master/sslchecker -o /usr/bin/sslchecker
|
||||
chmod +x /usr/bin/sslchecker
|
||||
fi
|
||||
|
||||
if [ "$source" == "version" ]; then
|
||||
echo "Version 2021-10-29"
|
||||
echo "Version 2022-02-02"
|
||||
fi
|
||||
|
||||
if [ "$source" == "cipher" ]; then
|
||||
|
|
@ -124,4 +134,4 @@ if [ -z "$port" ]; then
|
|||
fi
|
||||
echo -e '\e[90m\e[1m\e[104mTLS Version | Cipher | Kex \e[0m'
|
||||
nmap --script ssl-enum-ciphers -p $port $host -oX - | xmlstarlet sel -t -m '//nmaprun/host/ports/port/script/table/table/table' -v '../../@key' -o " | " -v 'elem[@key="name"]' -o ' | ' -v 'elem[@key="kex_info"]' -n 2>/dev/null
|
||||
fi
|
||||
fi
|
||||
Loading…
Add table
Add a link
Reference in a new issue