■ ■ ■ ■ ■ ■
sub3suite/res/documentation/engines/ssl.html
1 | | - | <h1> SSL ENGINE </h1><br> |
2 | | - | |
3 | | - | <i><b> Disclaimer:</b> This is a very simple documentation on the Tool. It still doesn't contain many information on the many features of the tool & on how to effectively use the tool.<br> |
4 | | - | Help improve the <a href=https://github.com/3nock/s3s_doc> documentation </a>.</i><br><br> |
5 | | - | |
6 | | - | <i><b> Disclaimer 2:</b> Incase of an unexpected error or erronous results please reach out by openning an <a href=https://github.com/3nock/sub3suite/issues>issue</a> on the repo or on Telegram chat</i>. |
7 | | - | |
8 | | - | <h2> What is? </h2> |
9 | | - | |
10 | | - | <b> SSL/TLS - </b> SSL (Secure Sockets Layer) and its successor, TLS (Transport Layer Security), are protocols for establishing authenticated and encrypted links between networked computers. |
11 | | - | Although the SSL protocol was deprecated with the release of TLS 1.0 in 1999, it is still common to refer to these related technologies as "SSL" or "SSL/TLS". |
12 | | - | <a href=https://www.ssl.com/faqs/faq-what-is-ssl> reference </a>.<br><br> |
13 | | - | |
14 | | - | <b> SSL Certificates - </b> SSL certificates make SSL/TLS encryption possible, and they contain the website's public key and the website's identity, along with related information. |
15 | | - | Devices attempting to communicate with the origin server will reference this file to obtain the public key and verify the server's identity. The private key is kept secret and secure. |
16 | | - | <a href=https://www.cloudflare.com/learning/ssl/what-is-an-ssl-certificate> reference </a>.<br><br> |
17 | | - | |
18 | | - | <b> SSL Engine - </b> Is used to enumerate SSL Certificates from targets by actively establishing encrypted connection to the target and pulling the obtained SSL Certificate to |
19 | | - | obtain all relevant information stored in the certificate that can be useful to map the target.<br> |
20 | | - | SSL Certificates store important information such as:<br> |
21 | | - | 1. Associated domains.<br> |
22 | | - | 2. Organization name & contacts.<br> |
23 | | - | 3. Issued & Expirely date of the certificate. etc<br><br> |
24 | | - | |
25 | | - | sub3suite's SSL Engine pulls all the data from the SSL Certificate and present it in a very intuitive manner. |
26 | | - | The Tool returns results as SSL Certificates full info, SSL Cert Hash(sha1 && sha256) & SSL alternative names.<br><br> |
27 | | - | |
28 | | - | This Tool uses multiple threads as alocated by the user to perform enumeration. |
29 | | - | |
30 | | - | <h2> Input Output: </h2><br> |
31 | | - | <b> Input: </b> Domain/Hostname<br> |
32 | | - | <b> Output: </b> Alternative/Associated Names, Certicate Hash(sha1/sha256) & The Certificate<br> |
33 | | - | |
34 | | - | <h2> Features: </h2> |
35 | | - | 1. Supports multiple Targets connections in one scan using multiple threads.<br> |
36 | | - | 2. Supports enumeration by connecting to host on specified ports eg (HTTP, HTTPS, FTP etc.).<br> |
37 | | - | 3. <b> Multiple Targets search: </b> Search mulitple targets and the enumerator will provide the results for every targets.<br> |
38 | | - | |
39 | | - | <h2> Scan Configuration values: </h2><br> |
40 | | - | |
41 | | - | <b> Timeout - </b> Time for performing the lookup in milliseconds (terminates connection if timeout). It is advised for the timeout to be greater than 500<br> |
42 | | - | <b> No Duplicates - </b> Check to avoid duplicated results of the target<br> |
43 | | - | <b> AutoSave To Project - </b> Sends the obtained results directly to the project explorer as the scan progresses<br> |
44 | | - | |
45 | | - | |
46 | | - | <h2> Usage: </h2> |
47 | | - | |
48 | | - | 1. Set the scan configuration by clicking the <b>config</b> button, setting the values and save.<br> |
49 | | - | 2. <b>If single Target:</b> enter target (domain/hostname) on the LineEdit. <b>If multiple Targets:</b> check the <b>Multile Targes</b> checkbox and enter the target values (ssl certificate hash) on the ListView marked by <b> Targets </b>. <br> |
50 | | - | 3. Start The scan<br> |
51 | | - | |
52 | | - | <h2> Actions: </h2> |
53 | | - | |
54 | | - | Details on the actions for the obtained results.<br> |
55 | | - | |
56 | | - | - The Actions on Results are accessible via the <b>Actions ></b> button and <b>Right-Click</b> on the Results. & are only active when the results are present<br> |
57 | | - | |
58 | | - | 1. <b> Clear: </b> Clears the results and the progress bar.<br> |
59 | | - | 2. <b> Expand & Collapse: </b> Expands the all areas of the result tree and Collapse all areas of the result tree respectively<br> |
60 | | - | 3. <b> Save: </b> Saves the obtained Results To a File. Saves in Json format<br> |
61 | | - | 4. <b> Copy: </b> Copies the results on the clipboard. Copies in Json format<br> |
62 | | - | 5. <b> Send To Project: </b> Sends the Obtained results to the project explorer.<br><br> |
63 | | - | |
64 | | - | <b> NOTE: </b><br> |
65 | | - | If you have filtered the results using the filter. the above actions will only be performed on the remaing results after filter<br> |
66 | | - | |
67 | | - | <h2> References: </h2> |
68 | | - | 1. <a href=https://www.vanimpe.eu/2016/08/29/use-certificate-transparency-osint>Use Certificate Transparency for OSINT and passive reconnaissance</a><br> |
69 | | - | 2. <a href=https://osintcurio.us/2019/03/12/certificates-the-osint-gift-that-keeps-on-giving>Certificates: The OSINT Gift that Keeps on Giving</a><br> |
70 | | - | |