See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.
Course Of The Month
7 days, 6 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
tool like openssl for windows
Posted on 2011-09-04
Hi experts,
I am a network engineer and don't normally deal with coding or IT forensics.
What I am looking to do is see the type of response from our SSL sites when it receives an SSLV2 requests.
I've read that openssl does the trick but I don't think it installs on Windows (correct me if I am wrong). What other tools are available for this?
I am a network engineer and don't normally deal with coding or IT forensics.
What I am looking to do is see the type of response from our SSL sites when it receives an SSLV2 requests.
I've read that openssl does the trick but I don't think it installs on Windows (correct me if I am wrong). What other tools are available for this?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
5-
3
9 Comments
Active 1 day ago
I haven't used this or know anyone who has, but it looks like This app from Shining Light might do the trick.
Why not just fire up a Unix-based VM? Ubuntu is nice and friendly to those who are used to Windows, then you can just use "openssl s_client" combined with whatever special options you need for your testing. This approach realistically shouldn't take long at all these days, it's a pretty common practice.
Why not just fire up a Unix-based VM? Ubuntu is nice and friendly to those who are used to Windows, then you can just use "openssl s_client" combined with whatever special options you need for your testing. This approach realistically shouldn't take long at all these days, it's a pretty common practice.
Active 1 day ago
Windows binaries for openssl:
http://www.openssl.org/related/binaries.html
Hope this helps.
All that has is the link I already provided.
Active 1 day ago
Thank you. i was able to load openssl on my Windows 64-bit computer.
I went into DOS and typed in c:\openssl-win64\bin\opens
Now I get an OPENSSL prompt.
I will diable sslv3 and only allow sslv2 on my browser. I want to then go to www.chase.com and see how it responds.
Can someone provide a same syntax for accomplishing this? Chase IP is 159.53.60.115
I went into DOS and typed in c:\openssl-win64\bin\opens
Now I get an OPENSSL prompt.
I will diable sslv3 and only allow sslv2 on my browser. I want to then go to www.chase.com and see how it responds.
Can someone provide a same syntax for accomplishing this? Chase IP is 159.53.60.115
Active 1 day ago
I don't see a syntax for S-client.
OpenSSL> s-client ?
openssl:Error: 's-client' is an invalid command.
OpenSSL> openssl s_client ?
openssl:Error: 'openssl' is an invalid command.
OpenSSL> s-client ?
openssl:Error: 's-client' is an invalid command.
OpenSSL> openssl s_client ?
openssl:Error: 'openssl' is an invalid command.
Active 1 day ago
s_client is an argument to give after 'openssl' on the command line, not in interactive mode (although you may be able to, but for the sake of this thread just use the following command).
Run that and if you see the certificate, you *should* be good.
openssl s_client -connect hostname:port -ssl2
Run that and if you see the certificate, you *should* be good.
Active 1 day ago
Run that and if you see the certificate, you *should* be good.
I should have clarified. If you see the certificate, then SSLv2 is enabled. Not sure what you are trying to accomplish, but disabling SSLv2 and weak ciphers are good things to do.
Featured Post
We value your feedback.
Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Email attacks are the most common methods for initiating ransomware and phishing scams. Attackers want you to open an infected attachment or click a malicious link, and unwittingly download malware to your machine. Here are 7 ways you can stay safe.
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message.
In the To field, type your recipient's fax number @efaxsend.com.
You can even send a secure international fax — just include t…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email
Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Suggested Courses
Course of the Month7 days, 6 hours left to enroll
Earn Certification
Cisco CCNP Security: SIMOS
$197.00$177.30
Earn Certification
Cisco CCNP Security: SITCS
$197.00$177.30
726 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.