Detect servers with insecure DH parameters

ssllabs / ssllabs-scan

A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.

https://www.ssllabs.com/projects/ssllabs-apis/

Apache License 2.0

1.7k stars 240 forks source link

Open ivanr opened 8 years ago

ivanr commented 8 years ago

KommX commented 8 years ago

Is there a good description on how this attack works?

fishouttah20 commented 7 years ago

Does SSLLabs check against all the common primes defined here: https://github.com/cryptosense/diffie-hellman-groups