Support for testing .onion domains when used in conjunction with `torsocks` - Githubissues

drwetter / testssl.sh

Testing TLS/SSL encryption anywhere on any port

https://testssl.sh

GNU General Public License v2.0

7.88k stars 1.01k forks source link

Support for testing .onion domains when used in conjunction with `torsocks` #878

Open dtemp-nyt opened 6 years ago

dtemp-nyt commented 6 years ago

torsocks is a CLI application installed along with the Tor Browser on many Linux distros. It allows you to run a command like:

torsocks curl xxxxxx.onion

...allowing many CLI commands to be run over the tor network and be able to resolve .onion addresses. When you use testssl.sh this way:

torsocks /path/to/testssl.sh xxxxxx.onion

The script reports:

Fatal error: No IPv4/IPv6 address(es) for "xxxxxx.onion" available

It would be great if we could get these two working together, as it is probably the best way to interrogate TLS for TOR services.

drwetter commented 6 years ago

Hi @dtemp-nyt ,

sure, that would be a good feature. I suspect that testssl.sh needs to do DNS lookups over socks but I can't tell.

Help is appreciated here!

Dirk