forked from rbsec/sslscan
-
Notifications
You must be signed in to change notification settings - Fork 0
/
TODO
16 lines (16 loc) · 876 Bytes
/
TODO
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
Fix session resumption test
We have a false positive for session resumption
IDs are assigned but not accepted for resumption
Fix the certificate formatting (prefix it with whitespace)
Add support for SOCKS5 proxy (or audit for 'usewithtor')
It seems to work fine with 'usewithtor'
It still seems prudent to add proper proxy support
Fix XMPP scans that do not support StartTLS:
"<stream:error><invalid-namespace xmlns='urn:ietf:params:xml:ns:xmpp-streams'/></stream:error>"
Add HTML report generation
Add diff between reported and actually supported ciphers
Make a Debian package
We should explicitly check for things that may be NULL; the original author was not very careful.
Perhaps write a GUI for people who are console adverse?
Compare with http://www.thesprawl.org/memdump/?entry=7
Finally, we should send a diff from 1.8.2 to the upstream developer