Feature Request : Write "security colors" as a text in XML output

rbsec / sslscan

sslscan tests SSL/TLS enabled services to discover supported cipher suites

GNU General Public License v3.0

2.34k stars 384 forks source link

Feature Request : Write "security colors" as a text in XML output #286

Closed vinch1266 closed 1 year ago

vinch1266 commented 1 year ago

Hi,

Thanks for the wonderful job ! It would be amazing if we could have the security advisories (corresponding to the Red/Yellow/Green colors in the output) as a text in the XML file, so we could easily identify if something could be improved in the server's configuration.

Regards

rbsec commented 1 year ago

Hi @vinch1266 ,

There isn't a full mapping of all of the colours output (things like the certificates and supported protocols aren't shown - although the information in there to let you decide whether you're happy with them). However, the colours for the ciphers are mapped to the strength attribute in the XML:

Red = weak
Yellow = medium
White = acceptable
Green = strong

So perhaps that provides the information you're looking for?