-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathReadme.txt
112 lines (73 loc) · 2.86 KB
/
Readme.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
================================================================================
SslCat 0.2.1
Copyright ©2007-2008 Liam Kirton <[email protected]>
15th March 2008
http://int3.ws/
================================================================================
=========
Overview:
=========
SslCat is a simple tool to allow console interaction with SSL enabled services
offered by a target system. SslCat can also accept incoming connections from SSL
enabled clients.
SslCat accepts either interactive or piped input, and allows the control of
supported protocols and maximum cipher strength.
=============
Certificates:
=============
For accepting incoming connections, SslCat requires a self-signed SSL certificate
that is correctly installed in the local machine certificate store.
-> Generating (Optional)
To generate a new self-signed root certificate and SslCat certificate pair,
run Makecert.bat (requires makecert.exe from Microsoft, part of the .NET
Framework SDK). This also performs the necessary installation.
Note that generation isn't necessary when existing certificates are imported.
-> Importing Existing
To import an existing certificate pair (SslCatRoot.pfx and SslCat.pfx)
into the local certificate store, run ImportPfx.vbs. This requires the
Microsoft redistributable library Capicom.dll (included).
Note that default SslCat.pfx and SslCat.pfx are supplied in \Certificates.
===========
Parameters:
===========
/Target:
--------
The /Target parameter may contain a single target IP address.
/Port:
------
The /Port parameter may contain a single port number.
/Ssl2 /Ssl3 /Tls1:
------------------
These parameters determine the protocols supported by each connection. Specify
one or more as required.
Default: /Ssl2 /Ssl3 /Tls1
/Cipher:
--------
The /Cipher parameter specifies the maximum cipher strength to support for
each enabled protocol.
Default: 0 (i.e. unrestricted).
/Listen:
---------
The /Listen parameter specifies that SslCat should listen for incoming
connections on the specified port.
/Verbose:
---------
The /Verbose parameter specifies that certificate and algorithm information
should be displayed upon successful connection.
=========
Examples:
=========
Interactive Client:
-------------------
SslCat.exe /Target 25.0.1.1 /Port 443
SslCat.exe /Target 25.0.1.1 /Port 443 /Ssl2 /Cipher 40 /Verbose
SslCat.exe /Target 25.0.1.1 /Port 443 /Ssl2 /Ssl3 /Cipher 128 /Verbose
SslCat.exe /Target 25.0.1.1 /Port 443 /Tls1 /Cipher 128 /Verbose
Interactive Server:
-------------------
SslCat.exe /Port 443 /Listen
SslCat.exe /Port 443 /Listen /Ssl2 /Cipher 40 /Verbose
Piped:
------
type Request.txt | SslCat.exe /Target 25.0.1.1 /Port 443
================================================================================