From b8cc4d50be78a8a1c2f4e5e8d931d2af26594bc1 Mon Sep 17 00:00:00 2001
From: Dominique RIGHETTO <righettod@users.noreply.github.com>
Date: Wed, 9 Feb 2022 07:38:17 +0100
Subject: [PATCH] Detect hosts using deprecated versions of SSL/TLS. (#3680)

* Add template

* Fix linter error

* misc updates

Co-authored-by: sandeep <sandeep@projectdiscovery.io>
---
 ssl/deprecated-tls.yaml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 ssl/deprecated-tls.yaml

diff --git a/ssl/deprecated-tls.yaml b/ssl/deprecated-tls.yaml
new file mode 100644
index 0000000000..bfcd9696da
--- /dev/null
+++ b/ssl/deprecated-tls.yaml
@@ -0,0 +1,20 @@
+id: deprecated-tls
+
+info:
+  name: Deprecated TLS Detection (inferior to TLS 1.2)
+  author: righettod
+  severity: info
+  reference: https://ssl-config.mozilla.org/#config=intermediate
+  metadata:
+    shodan-query: ssl.version:sslv2 ssl.version:sslv3 ssl.version:tlsv1 ssl.version:tlsv1.1
+  tags: ssl
+
+ssl:
+  - address: "{{Host}}:{{Port}}"
+    min_version: sslv3
+    max_version: tls11
+
+    extractors:
+      - type: json
+        json:
+          - " .tls_version"