SSL/TLS and Certificates

Tools

SSL Cipher Suite Enum - ssl-cipher-suite enum is a Perl script to enumerate supported SSL cipher suites supported by network services (principally HTTPS)
- https://labs.portcullis.co.uk/tools/ssl-cipher-suite-enum/
Testssl.sh - a common tool used to audit the ciphers and protocols supported by remote servers, allowing people to determine if a secure configuration is enforced or not.
sslScrape - strips hostnames form certs over port 443 connections
SSLYZE - TLS/SSL config analyzer
tls_prober - A tool to fingerprint SSL/TLS servers
testssl.sh
https://github.com/IBM/tls-vuln-cheatsheet

Crt.sh - Certificate Search
CTSearch - Certificate Transparency Search Tool
tls.bufferover.run - Quickly find certificates in IPv4 space
CertSpotter - Monitors your domains for expiring, unauthorized, and invalid SSL certificates
SynapsInt - The unified OSINT research tool
Censys - Certificates - Certificates Search
PassiveTotal - Security intelligence that scales security operations and response

Used to create self signed certificates for SSL encryption

# openssl req -newkey rsa:2048 -nodes -keyout bind_shell.key -x509 -days 362 -out cirtificate.crt

# cat certificate.key certificate.crt > certificate.pem

# openssl req -new -x509 -keyout ca.key -out ca.crt -config openssl.cnf

You will be prompted for certain pieces of information as well as a password which can be used when signing certificates in the future, so do not forget this! Two files will be outputted: ca.key which contains the CA’s private key, and ca.crt which contains the CA’s public key certificate.
Attacking Network Protocols - pg.200