{"id":805,"date":"2023-11-14T17:25:42","date_gmt":"2023-11-14T09:25:42","guid":{"rendered":"https:\/\/www.orztip.com\/?p=805&#038;article_title="},"modified":"2023-11-14T17:28:16","modified_gmt":"2023-11-14T09:28:16","slug":"nmap-ssl-enum-ciphers","status":"publish","type":"post","link":"https:\/\/www.orztip.com\/?p=805&article_title=nmap-ssl-enum-ciphers","title":{"rendered":"\u5982\u4f55\u5f97\u77e5\u7f51\u7ad9SSL\u534f\u8bae\u4e2d\u4f7f\u7528\u4e86\u54ea\u4e9b\u52a0\u5bc6\u5957\u4ef6"},"content":{"rendered":"\n<p>\u6709\u65f6\u7f51\u7ad9\u4f1a\u88ab\u62a5\u544a\u6709SSL\u76f8\u5173\u7684\u6f0f\u6d1e\uff0c\u8fd9\u4e2a\u65f6\u5019\u9700\u8981\u77e5\u9053\u5bf9\u5e94\u7f51\u7ad9\u7684SSL\u534f\u8bae\u4e2d\u4f7f\u7528\u4e86\u4ec0\u4e48\u5957\u4ef6\uff0c\u4ece\u800c\u8fdb\u884c\u76f8\u5e94\u8bc4\u4f30\u3002\u65b9\u6cd5\u662f\u7528nmap\u7684ssl-enum-ciphers\uff1a<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -sV --script ssl-enum-ciphers -p \u3010\u7aef\u53e3\u3011 \u3010ip\u6216\u8005\u57df\u540d\u3011<\/code><\/pre>\n\n\n\n<p>\u4f8b\u5b50<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nmap -sV --script ssl-enum-ciphers -p 443 www.baidu.com\nStarting Nmap 7.93 ( https:\/\/nmap.org ) at 2023-11-14 17:22 CST\nNmap scan report for www.baidu.com (xxx.xxx.xxx.xxx)\nHost is up (0.012s latency).\nOther addresses for www.baidu.com (not scanned): xxx.xxx.xxx.xxx 240e:ff:xxxxx\n\nPORT    STATE SERVICE  VERSION\n443\/tcp open  ssl\/http Apache httpd\n| ssl-enum-ciphers: \n|   SSLv3: \n|     ciphers: \n|       TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n|     compressors: \n|       NULL\n|     cipher preference: indeterminate\n|     cipher preference error: Too few ciphers supported\n|     warnings: \n|       Broken cipher RC4 is deprecated by RFC 7465\n|       Forward Secrecy not supported by any cipher\n|   TLSv1.0: \n|     ciphers: \n|       TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n|       TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n|       TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n|       TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n|     compressors: \n|       NULL\n|     cipher preference: server\n|     warnings: \n|       Broken cipher RC4 is deprecated by RFC 7465\n|   TLSv1.1: \n|     ciphers: \n|       TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n|       TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n|       TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n|       TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n|     compressors: \n|       NULL\n|     cipher preference: server\n|     warnings: \n|       Broken cipher RC4 is deprecated by RFC 7465\n|   TLSv1.2: \n|     ciphers: \n|       TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - A\n|       TLS_ECDHE_RSA_WITH_RC4_128_SHA (secp256r1) - C\n|       TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - A\n|       TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - A\n|       TLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - A\n|       TLS_RSA_WITH_RC4_128_SHA (rsa 2048) - C\n|     compressors: \n|       NULL\n|     cipher preference: server\n|     warnings: \n|       Broken cipher RC4 is deprecated by RFC 7465\n|_  least strength: C\n|_http-server-header: BWS\/1.1\n\nService detection performed. Please report any incorrect results at https:\/\/nmap.org\/submit\/ .\nNmap done: 1 IP address (1 host up) scanned in 13.84 seconds<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>\u6709\u65f6\u7f51\u7ad9\u4f1a\u88ab\u62a5\u544a\u6709SSL\u76f8\u5173\u7684\u6f0f\u6d1e\uff0c\u8fd9\u4e2a\u65f6\u5019\u9700\u8981\u77e5\u9053\u5bf9\u5e94\u7f51\u7ad9\u7684SSL\u534f\u8bae\u4e2d\u4f7f\u7528\u4e86\u4ec0\u4e48\u5957\u4ef6\uff0c\u4ece\u800c\u8fdb\u884c\u76f8\u5e94\u8bc4\u4f30\u3002\u65b9&hellip; <a class=\"more-link\" href=\"https:\/\/www.orztip.com\/?p=805&#038;article_title=nmap-ssl-enum-ciphers\">\u7ee7\u7eed\u9605\u8bfb<span class=\"screen-reader-text\">\u5982\u4f55\u5f97\u77e5\u7f51\u7ad9SSL\u534f\u8bae\u4e2d\u4f7f\u7528\u4e86\u54ea\u4e9b\u52a0\u5bc6\u5957\u4ef6<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7,116,6],"tags":[14,145],"_links":{"self":[{"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/posts\/805"}],"collection":[{"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.orztip.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=805"}],"version-history":[{"count":3,"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/posts\/805\/revisions"}],"predecessor-version":[{"id":809,"href":"https:\/\/www.orztip.com\/index.php?rest_route=\/wp\/v2\/posts\/805\/revisions\/809"}],"wp:attachment":[{"href":"https:\/\/www.orztip.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=805"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.orztip.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=805"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.orztip.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=805"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}