-
Notifications
You must be signed in to change notification settings - Fork 241
Home
@trimstray edited this page Mar 6, 2019
·
28 revisions
You can file an issue about it and ask that it be added.
In my daily work, I missed a tool with which I could test the configuration of domains in a simple way. The ability to use curl or openssl is very important, but I did not have the tools to automate this process. Until now, I used the tools available on the web, but each of them had some shortcomings.
htrace.sh is a simple shell script to debugging http/https connection tracing, response headers and mixed-content. Scanning domain using Nmap NSE Library. Support external security tools: testssl.sh, Mozilla Observatory and SSL Labs API.
It is useful for:
- checking properly domain configuration (web servers/reverse proxies)
- displaying basic HTTP information including URLs, GeoIP, status codes and protocol info
- checking HTTP request latency (
time_connectandtime_total) - redirects analysis (and follows it), e.g. to eliminate redirect loops
- viewing and analyzing response headers for each request
- try bypassing cache
- viewing and analyzing response body for each request
- setting HTTP request method and header(s)
- checking basic ssl configuration
-
validation of the certificates (e.g.
date,cn,san), checking sni and verification ssl connection
-
validation of the certificates (e.g.
- checking extended ssl configuration with testssl.sh
- scanning domain for Mixed Content
- scanning domain using Nmap NSE Library (34 scripts)
- scanning domain with external security tools: Mozilla Observatory and SSL Labs API
htrace.sh v1.1.7