我想检查是否有必要testing每一个可能的ssl,tls我的testsslserver列出。 目的是找出尽可能多的http响应。 最重要的是,我想检查一下,除了200以外的HTTP响应代码是否有效:
echo "---HTTP 1.0 ----" printf "GET / HTTP/1.0\r\n\r\n" | nc -v $1 $2 echo "Last Run:GET / HTTP/1.0\r\n\r\n" printf "OPTIONS / HTTP/1.0\r\n\r\n" | nc -v $1 $2 echo "Last Run:OPTIONS / HTTP/1.0\r\n\r\n" echo "---HTTP 1.1 ----" printf "GET / HTTP/1.1\r\nHost: $1:$2\r\nConnection: close\r\n\r\n" | nc -v $1 $2 echo "Last Run:GET / HTTP/1.1\r\nHost: $1:$2\r\nConnection: close\r\n\r\n" #if the request is:"GET / HTTP/1.1\r\nHost: host:port\r\n\r\n" then the response contains header as well as body, and the connection will not close even after the response. printf "OPTIONS / HTTP/1.1\r\nHost: $1:$2\r\nConnection: close\r\n\r\n" | nc -v $1 $2 echo "Last Run:OPTIONS / HTTP/1.1\r\nHost: $1:$2\r\nConnection: close\r\n\r\n" 如果您尝试使用浏览器来检查密码的兼容性,则可以使用SSL实验室来运行它。 而对于最新的密码, 你可以使用Mozilla 。