Verified Commit d0d4adea authored by Elger Jonker's avatar Elger Jonker

implemented cert-chain-resolver check, finetuning findings

parent 6e7925fc
Pipeline #25841110 passed with stage
in 16 minutes and 13 seconds
......@@ -2,8 +2,8 @@ import logging
from django.core.management.base import BaseCommand
from failmap.scanners.scanner_tls_osaft import (ammend_unsuported_issues, determine_grade,
grade_report, run_osaft_scan)
from failmap.scanners.scanner_tls_osaft import (ammend_unsuported_issues, cert_chain_is_complete,
determine_grade, grade_report, run_osaft_scan)
logger = logging.getLogger(__package__)
......@@ -12,9 +12,13 @@ class Command(BaseCommand):
help = 'Development command'
def handle(self, *args, **options):
address = "faalkaart.nl"
cert_chain_is_complete("tweakers.net", 443)
address = "tweakers.net"
port = 443
report = run_osaft_scan(address, port)
report = ammend_unsuported_issues(report, address, port)
grades, trust, report = determine_grade(report)
print("report:")
print(grade_report(grades, trust, report))
# store_grade((grades, trust, report), )
# https://stackoverflow.com/questions/115983/how-can-i-add-an-empty-directory-to-a-git-repository#932982
# Ignore everything in this directory
*
# Except this file
!.gitignore
\ No newline at end of file
This diff is collapsed.
......@@ -448,7 +448,9 @@ TOOLS = {
'cert_chain_resolver': {
'Darwin': VENDOR_DIR + 'cert-chain-resolver/cert-chain-resolver-darwin',
'Linux': VENDOR_DIR + 'cert-chain-resolver/cert-chain-resolver-linux',
}
},
'tls_check_output_dir': OUTPUT_DIR + os.environ.get('TLSCHECK_OUTPUT_DIR',
'scanners/resources/output/tls_check/'),
},
'dnscheck': {
'executable': TOOLS_DIR + 'dnssec.pl'
......
......@@ -66,6 +66,7 @@ function stat(key,val) {
line("label", arr[2], ",");
if (typ == "cipher") {
line("supported", arr[3], ",");
line("bits", arr[4], ",");
}
line("value", arr[length(arr)], "");
print "},";
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment