blob: 8fdf046ca7f9f9ee5f83ec1c51b1ce81c0d17243 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
|
#!/usr/bin/python2
import sys
import time
import subprocess
import re
def format_report(client_output):
version_re = re.compile('TLS (v1\.[0-2]) using ([A-Z0-9_]+)')
version_match = version_re.search(client_output)
#print client_output
if version_match:
return "Established %s %s" % (version_match.group(1), version_match.group(2))
else:
return client_output
def scanner(args = None):
if args is None:
args = sys.argv
if len(args) != 2:
print "Error: Usage tls_scanner.py host_file"
return 2
scanners = {}
for url in [s.strip() for s in open(args[1]).readlines()]:
scanners[url] = subprocess.Popen(['../../../botan', 'tls_client', '--policy=policy.txt', url],
stdout=subprocess.PIPE, stdin=subprocess.PIPE, stderr=subprocess.PIPE)
for url in scanners.keys():
scanners[url].stdin.close()
report = {}
timeout = 10
for url in scanners.keys():
print "waiting for", url
for i in range(timeout):
scanners[url].poll()
if scanners[url].returncode != None:
break
#print "Waiting %d more seconds for %s" % (timeout-i, url)
time.sleep(1)
if scanners[url].returncode != None:
output = scanners[url].stdout.read() + scanners[url].stderr.read()
report[url] = format_report(output)
for url in report.keys():
print url, ":", report[url]
return 0
if __name__ == '__main__':
sys.exit(scanner())
|
