Update revoked-ssl-certificate.yaml

2023-03-16 20:10:33 +05:30 · 2023-03-16 20:10:33 +05:30 · b56a4399e3
parent e42e7274ed
commit b56a4399e3
1 changed files with 4 additions and 6 deletions
--- a/ssl/revoked-ssl-certificate.yaml
+++ b/ssl/revoked-ssl-certificate.yaml
@ -3,15 +3,13 @@ id: revoked-ssl-certificate
 info:
  name: Revoked SSL Certificate - Detect
  author: pussycat0x
+  severity: low
  description: |
-     Certificate revocation is the act of invalidating a TLS/SSL before its scheduled expiration date. A certificate should be revoked immediately when its private key shows signs of being compromised.
-     It should also be revoked when the domain for which it was issued is no longer operational.
+     Certificate revocation is the act of invalidating a TLS/SSL before its scheduled expiration date. A certificate should be revoked immediately when its private key shows signs of being compromised. It should also be revoked when the domain for which it was issued is no longer operational.
  reference: |
    - https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/revoked-ssl-certificate/
    - https://www.tenable.com/plugins/nnm/5837
-
-  severity: low
-  tags: ssl
+  tags: ssl,revoked

 ssl:
  - address: "{{Host}}:{{Port}}"
@ -19,4 +17,4 @@ ssl:
    matchers:
      - type: dsl
        dsl:
-          - "revoked == true"
+          - "revoked == true"