daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update and rename weak-cipher-suite-detect.yaml to weak-cipher-suites.yaml

patch-1
Prince Chaddha 2022-10-18 11:51:36 +05:30 committed by GitHub
parent 2d98992ef0
commit 4f22224917
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
ssl/weak-cipher-suite-detect.yaml → ssl/weak-cipher-suites.yaml
View File

@ -1,6 +1,6 @@
id: weak-cipher-suite-detect
id: weak-cipher-suites
info:
name: Weak Cipher Suite Detection
name: Weak Cipher Suites Detection
author: pussycat0x
severity: low
reference:
@ -8,13 +8,16 @@ info:
description:
A weak cipher is defined as an encryption/decryption algorithm that uses a key of insufficient length. Using an insufficient length for a key
in an encryption/decryption algorithm opens up the possibility (or probability) that the encryption scheme could be broken.
tags: ssl
tags: ssl,tls,misconfig
ssl:
- address: "{{Host}}:{{Port}}"
extractors:
- type: json
json:
- '.cipher'
matchers:
- type: word
part: cipher
@ -215,3 +218,4 @@ ssl:
- "TLS_DH_RSA_WITH_ARIA_128_GCM_SHA256"
- "TLS_ECDH_RSA_WITH_ARIA_128_GCM_SHA256"
- "TLS_KRB5_WITH_IDEA_CBC_SHA"
condition: or