ic0ns
commented
2 days ago Looks like the issue is coming from here:
The core of the issue is that TLS-Scanner was unable to read the certificate chain of the domain which then causes ArrayIndexOutOfBounds exception when trying to to get the leaf certificate. As a workaround you can disable the CertificateTransparencyProbe here by commenting it out: https://github.com/tls-attacker/TLS-Scanner/blob/7fd1969f398e2b41f8116e8062d3e198658eed44/TLS-Server-Scanner/src/main/java/de/rub/nds/tlsscanner/serverscanner/execution/TlsServerScanner.java#L167
When scanning certain domains the TLS Scanner often (but not always) crashes because of the following exception