Your SlideShare is downloading. ×
nullcon 2011 - SSLSmart – Smart SSL Cipher Enumeration
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Introducing the official SlideShare app

Stunning, full-screen experience for iPhone and Android

Text the download link to your phone

Standard text messaging rates apply

nullcon 2011 - SSLSmart – Smart SSL Cipher Enumeration

1,077
views

Published on

SSLSmart – Smart SSL Cipher Enumeration by Gursev Singh Kalra

SSLSmart – Smart SSL Cipher Enumeration by Gursev Singh Kalra

Published in: Technology

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
1,077
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
10
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. SSLSmart – Smart SSL Cipher Enumeration Gursev Singh Kalra nullcon | Feb26, 2011
  • 2. Agenda►Introduction►Why Enumerate SSL Ciphers?►Why SSLSmart?►SSLSmart Demonstrations►Q&A www.foundstone.com © 2010, McAfee, Inc.
  • 3. Introduction►Who am I? ■ Managing Consultant – Foundstone Professional Services ■ Web Applications, Networks, Mobile Applications, Research, Tools… www.foundstone.com © 2010, McAfee, Inc.
  • 4. Why Enumerate SSL Ciphers?►PCI Compliance►Web Application Penetration Testing►Network Assessments►Insecure Crypto Implementation www.foundstone.com © 2010, McAfee, Inc.
  • 5. Why SSLSmart? Flexible WYSIWYG SSLSmartOpen Source and Rich Reporting Cross Platform www.foundstone.com © 2010, McAfee, Inc.
  • 6. Flexibility• Granular Cipher Control• Certificate Verification• Proxy Support• Content and CONNECT Tests www.foundstone.com © 2010, McAfee, Inc.
  • 7. What You See Is What You Get www.foundstone.com © 2010, McAfee, Inc.
  • 8. Open Source and Cross Platform• Works with Ruby 1.8.6, 1.8.7, 1.9.1 & 1.9.2• Tested on Windows, Linux www.foundstone.com © 2010, McAfee, Inc.
  • 9. Rich Reporting• Text• HTML• XML www.foundstone.com © 2010, McAfee, Inc.
  • 10. SSLSmart Demonstrations►SSLSmart GUI►Custom scripts using SSLSmart API’s www.foundstone.com © 2010, McAfee, Inc.
  • 11. Queries www.foundstone.com © 2010, McAfee, Inc.
  • 12. Thank You Gursev Kalragursev.kalra@foundstone.com www.foundstone.com © 2010, McAfee, Inc.