You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
943 lines
39 KiB
943 lines
39 KiB
[
|
|
{
|
|
"id" : "service",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "HTTP"
|
|
}
|
|
, {
|
|
"id" : "SSLv2",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "SSLv3",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "TLS1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "TLS1_1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "TLS1_2",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "TLS1_3",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "not offered and downgraded to a weaker protocol"
|
|
}
|
|
, {
|
|
"id" : "NPN",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "offered with http/1.1 (advertised)"
|
|
}
|
|
, {
|
|
"id" : "ALPN",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_NULL",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cwe" : "CWE-327",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_aNULL",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cwe" : "CWE-327",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_EXPORT",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cwe" : "CWE-327",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_LOW",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cwe" : "CWE-327",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_3DES_IDEA",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_AVERAGE",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "LOW",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "cipherlist_STRONG",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "PFS",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "PFS_ciphers",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "PFS_ECDHE_curves",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "prime256v1"
|
|
}
|
|
, {
|
|
"id" : "cipher_order",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "server"
|
|
}
|
|
, {
|
|
"id" : "protocol_negotiated",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "Default protocol TLS1.2"
|
|
}
|
|
, {
|
|
"id" : "cipher_negotiated",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256)"
|
|
}
|
|
, {
|
|
"id" : "cipherorder_TLSv1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA"
|
|
}
|
|
, {
|
|
"id" : "cipherorder_TLSv1_1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA"
|
|
}
|
|
, {
|
|
"id" : "cipherorder_TLSv1_2",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA"
|
|
}
|
|
, {
|
|
"id" : "TLS_extensions",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "'renegotiation info/#65281' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'heartbeat/#15' 'next protocol/#13172'"
|
|
}
|
|
, {
|
|
"id" : "TLS_session_ticket",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "valid for 300 seconds only (<daily)"
|
|
}
|
|
, {
|
|
"id" : "SSL_sessionID_support",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "yes"
|
|
}
|
|
, {
|
|
"id" : "sessionresumption_ticket",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "supported"
|
|
}
|
|
, {
|
|
"id" : "sessionresumption_ID",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "supported"
|
|
}
|
|
, {
|
|
"id" : "TLS_timestamp",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "random"
|
|
}
|
|
, {
|
|
"id" : "cert_numbers",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "1"
|
|
}
|
|
, {
|
|
"id" : "cert_signatureAlgorithm",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "SHA256 with RSA"
|
|
}
|
|
, {
|
|
"id" : "cert_keySize",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "256 EC bits"
|
|
}
|
|
, {
|
|
"id" : "cert_keyUsage",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "Digital Signature"
|
|
}
|
|
, {
|
|
"id" : "cert_extKeyUsage",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "cert_ext_keyusage"
|
|
}
|
|
, {
|
|
"id" : "cert_serialNumber",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "0499DF575990573957ECE8EA437972E75ECE"
|
|
}
|
|
, {
|
|
"id" : "cert_fingerprintSHA1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "5B25EE1C2C5DE5CFA70B9D9F4910ADDA0FE7B2D8"
|
|
}
|
|
, {
|
|
"id" : "cert_fingerprintSHA256",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "DF5D82F5EBB16EF983740A1C5E0774F607FD44C381B07D145F1A1EEDE0E5FFED"
|
|
}
|
|
, {
|
|
"id" : "cert",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "-----BEGIN CERTIFICATE----- MIIEizCCA3OgAwIBAgISBJnfV1mQVzlX7OjqQ3ly517OMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMTcxNTM4MThaFw0x OTA0MTcxNTM4MThaMBoxGDAWBgNVBAMTD2Z0cC5pZ2guY25ycy5mcjBZMBMGByqG SM49AgEGCCqGSM49AwEHA0IABIACMfESW4YAHv0ZTkjB8Ph8MLBtcqL2zW1c+NRv x83igyiMHlSE4SELgbRi2J2OyExDKS58lVoBDFmKhlLH5BOjggJkMIICYDAOBgNV HQ8BAf8EBAMCB4AwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFNZ5GVIipthJaNzyf7U0aLU7Zx3VMB8GA1UdIwQY MBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEF BQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEF BQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0R BBMwEYIPZnRwLmlnaC5jbnJzLmZyMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysG AQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA4mlLribo6UAJ6IYbtjuD1D7n /nSI+6SPKJMBnd3x2/4AAAFoXK12pgAABAMARzBFAiB3TTKccelagCHt7QBenvTv Df4CWEDEqxwgXnk4K+iDBwIhAMerS5HoTmgKNKzaZfr9WHXDJ91vFgSEMQWWkyCS jvJ3AHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFoXK10pAAA BAMARzBFAiBl7KNUiahDjoYBe+k2H1it8BBYfrS3pcyiYttxwGz+wwIhAOuMkdR5 Kz2qnk6mIy6qam2q6GzOOr6q/d71Rv/E477dMA0GCSqGSIb3DQEBCwUAA4IBAQBw b3+9Q4Hzf+rzJ4CQ7fAOagTBALBOUgGaqZthLMGZvAB9PLzDsmda/cAIDTf9XB0Y NVjWyhib8vGD5f/hbb4O7FJCHELwL8cVOK3bu7ye+JhTzJPRZL6DkHR1wavxO07n SMfrgOrbpBVCbXCuexF8Wc6ERRlnVxGc16wlJmgI8HneKoVGPGvtiiostbt5pUpz KibHKI4RA0gDKQEtL63MqQSl7BoMAmNjvMxieygNU4tPRbKXxi1hP0NDBozUWIFH Ts0c3loBeYHlHQr4qJYJsURGZI6KyY+0gvZ3f5WEw1uKAtWodLqRxvgmij196Hvm bgZl1UT7GAuuHb6x15R0 -----END CERTIFICATE-----"
|
|
}
|
|
, {
|
|
"id" : "cert_commonName",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "ftp.igh.cnrs.fr"
|
|
}
|
|
, {
|
|
"id" : "cert_commonName_wo_SNI",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ftp.igh.cnrs.fr"
|
|
}
|
|
, {
|
|
"id" : "cert_subjectAltName",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "ftp.igh.cnrs.fr"
|
|
}
|
|
, {
|
|
"id" : "cert_caIssuers",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "Let's Encrypt Authority X3 (Let's Encrypt from US)"
|
|
}
|
|
, {
|
|
"id" : "cert_trust",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "Ok via SAN and CN (same w/o SNI)"
|
|
}
|
|
, {
|
|
"id" : "cert_chain_of_trust",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "passed."
|
|
}
|
|
, {
|
|
"id" : "cert_certificatePolicies_EV",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "no"
|
|
}
|
|
, {
|
|
"id" : "cert_eTLS",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "not present"
|
|
}
|
|
, {
|
|
"id" : "cert_expiration_status",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "45 >= 30 days"
|
|
}
|
|
, {
|
|
"id" : "cert_notBefore",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "2019-01-17 10:38"
|
|
}
|
|
, {
|
|
"id" : "cert_notAfter",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "2019-04-17 11:38"
|
|
}
|
|
, {
|
|
"id" : "certs_countServer",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "2"
|
|
}
|
|
, {
|
|
"id" : "certs_list_ordering_problem",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "no"
|
|
}
|
|
, {
|
|
"id" : "cert_crlDistributionPoints",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "--"
|
|
}
|
|
, {
|
|
"id" : "cert_ocspURL",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "http://ocsp.int-x3.letsencrypt.org"
|
|
}
|
|
, {
|
|
"id" : "OCSP_stapling",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "offered"
|
|
}
|
|
, {
|
|
"id" : "cert_ocspRevoked",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "not revoked"
|
|
}
|
|
, {
|
|
"id" : "cert_mustStapleExtension",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "--"
|
|
}
|
|
, {
|
|
"id" : "DNS_CAArecord",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "LOW",
|
|
"finding" : "--"
|
|
}
|
|
, {
|
|
"id" : "certificate_transparency",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "yes (certificate extension)"
|
|
}
|
|
, {
|
|
"id" : "HTTP_status_code",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "200 OK ('/pub/CRAN/')"
|
|
}
|
|
, {
|
|
"id" : "HTTP_clock_skew",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "-31 seconds from localtime"
|
|
}
|
|
, {
|
|
"id" : "HSTS",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "LOW",
|
|
"finding" : "not offered"
|
|
}
|
|
, {
|
|
"id" : "HPKP",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "No support for HTTP Public Key Pinning"
|
|
}
|
|
, {
|
|
"id" : "banner_server",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "nginx"
|
|
}
|
|
, {
|
|
"id" : "banner_application",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "No application banner found"
|
|
}
|
|
, {
|
|
"id" : "cookie_count",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "0 at '/pub/CRAN/'"
|
|
}
|
|
, {
|
|
"id" : "security_headers",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "MEDIUM",
|
|
"finding" : "--"
|
|
}
|
|
, {
|
|
"id" : "banner_reverseproxy",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"cwe" : "CWE-200",
|
|
"finding" : "--"
|
|
}
|
|
, {
|
|
"id" : "heartbleed",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2014-0160",
|
|
"cwe" : "CWE-119",
|
|
"finding" : "not vulnerable , timed out"
|
|
}
|
|
, {
|
|
"id" : "CCS",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2014-0224",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "ticketbleed",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2016-9244",
|
|
"cwe" : "CWE-200",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "ROBOT",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2017-17382 CVE-2017-17427 CVE-2017-17428 CVE-2017-13098 CVE-2017-1000385 CVE-2017-13099 CVE-2016-6883 CVE-2012-5081 CVE-2017-6168",
|
|
"cwe" : "CWE-203",
|
|
"finding" : "not vulnerable, no RSA key transport cipher"
|
|
}
|
|
, {
|
|
"id" : "secure_renego",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2009-3555",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "secure_client_renego",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2009-3555",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "CRIME_TLS",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2012-4929",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "BREACH",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2013-3587",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable, no HTTP compression - only supplied '/pub/CRAN/' tested"
|
|
}
|
|
, {
|
|
"id" : "POODLE_SSL",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2014-3566",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "fallback_SCSV",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"finding" : "supported"
|
|
}
|
|
, {
|
|
"id" : "SWEET32",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2016-2183 CVE-2016-6329",
|
|
"cwe" : "CWE-327",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "FREAK",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2015-0204",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "DROWN",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2016-0800 CVE-2016-0703",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable to DROWN on this host and port"
|
|
}
|
|
, {
|
|
"id" : "DROWN",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"cve" : "CVE-2016-0800 CVE-2016-0703",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "no RSA certificate, can't be used with SSLv2 elsewhere"
|
|
}
|
|
, {
|
|
"id" : "LOGJAM",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2015-4000",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable, no DH EXPORT ciphers,"
|
|
}
|
|
, {
|
|
"id" : "LOGJAM-common_primes",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2015-4000",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "no DH key with <= TLS 1.2"
|
|
}
|
|
, {
|
|
"id" : "BEAST_CBC_TLS1",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "MEDIUM",
|
|
"cve" : "CVE-2011-3389",
|
|
"cwe" : "CWE-20",
|
|
"finding" : "ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-AES256-SHA"
|
|
}
|
|
, {
|
|
"id" : "BEAST",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "LOW",
|
|
"cve" : "CVE-2011-3389",
|
|
"cwe" : "CWE-20",
|
|
"finding" : "VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)"
|
|
}
|
|
, {
|
|
"id" : "LUCKY13",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "LOW",
|
|
"cve" : "CVE-2013-0169",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "potentially vulnerable, uses TLS CBC ciphers"
|
|
}
|
|
, {
|
|
"id" : "RC4",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "OK",
|
|
"cve" : "CVE-2013-2566 CVE-2015-2808",
|
|
"cwe" : "CWE-310",
|
|
"finding" : "not vulnerable"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc02c",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc024",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc024 ECDHE-ECDSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc00a",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc00a ECDHE-ECDSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc02b",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc023",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc023 ECDHE-ECDSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256"
|
|
}
|
|
, {
|
|
"id" : "cipher_xc009",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "xc009 ECDHE-ECDSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-android_422",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.0 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-android_442",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-android_500",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-android_60",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-android_70",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-chrome_65_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-chrome_70_win10",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-firefox_59_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-firefox_62_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_6_xp",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "No connection"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_7_vista",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.0 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_8_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.0 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_8_xp",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "No connection"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_11_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_11_win81",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_11_winphone81",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-ie_11_win10",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-edge_13_win10",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-edge_13_winphone10",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-edge_15_win10",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-opera_17_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-safari_9_ios9",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-safari_9_osx1011",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-safari_10_osx1012",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-apple_ats_9_ios9",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-tor_1709_win7",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.0 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-java_6u45",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "No connection"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-java_7u25",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.0 ECDHE-ECDSA-AES128-SHA"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-java_8u161",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-java_904",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-openssl_101l",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "clientsimulation-openssl_102e",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256"
|
|
}
|
|
, {
|
|
"id" : "scanTime",
|
|
"ip" : "ftp.igh.cnrs.fr/193.50.6.155",
|
|
"port" : "443",
|
|
"severity" : "INFO",
|
|
"finding" : "117"
|
|
}
|
|
]
|
|
|