166 lines
7.1 KiB
HTML
166 lines
7.1 KiB
HTML
Version: 2.0.15-static
|
|
OpenSSL 1.1.1q-dev xx XXX xxxx
|
|
|
|
Connected to 10.129.184.130
|
|
|
|
Testing SSL server escape.htb on port 3269 using SNI name escape.htb
|
|
|
|
SSL/TLS Protocols:
|
|
SSLv2 disabled
|
|
SSLv3 disabled
|
|
TLSv1.0 enabled
|
|
TLSv1.1 enabled
|
|
TLSv1.2 enabled
|
|
TLSv1.3 disabled
|
|
|
|
TLS Fallback SCSV:
|
|
Server does not support TLS Fallback SCSV
|
|
|
|
TLS renegotiation:
|
|
Secure session renegotiation supported
|
|
|
|
TLS Compression:
|
|
Compression disabled
|
|
|
|
Heartbleed:
|
|
TLSv1.2 not vulnerable to heartbleed
|
|
TLSv1.1 not vulnerable to heartbleed
|
|
TLSv1.0 not vulnerable to heartbleed
|
|
|
|
Supported Server Cipher(s):
|
|
Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-384 DHE 384
|
|
Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve 25519 DHE 253
|
|
Accepted TLSv1.2 256 bits DHE-RSA-AES256-GCM-SHA384 DHE 2048 bits
|
|
Accepted TLSv1.2 128 bits DHE-RSA-AES128-GCM-SHA256 DHE 2048 bits
|
|
Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA384 Curve P-384 DHE 384
|
|
Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA256 Curve 25519 DHE 253
|
|
Accepted TLSv1.2 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
|
|
Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-SHA Curve 25519 DHE 253
|
|
Accepted TLSv1.2 256 bits AES256-GCM-SHA384
|
|
Accepted TLSv1.2 128 bits AES128-GCM-SHA256
|
|
Accepted TLSv1.2 256 bits AES256-SHA256
|
|
Accepted TLSv1.2 128 bits AES128-SHA256
|
|
Accepted TLSv1.2 256 bits AES256-SHA
|
|
Accepted TLSv1.2 128 bits AES128-SHA
|
|
Accepted TLSv1.2 112 bits DES-CBC3-SHA
|
|
Preferred TLSv1.1 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
|
|
Accepted TLSv1.1 128 bits ECDHE-RSA-AES128-SHA Curve 25519 DHE 253
|
|
Accepted TLSv1.1 256 bits AES256-SHA
|
|
Accepted TLSv1.1 128 bits AES128-SHA
|
|
Accepted TLSv1.1 112 bits DES-CBC3-SHA
|
|
Preferred TLSv1.0 256 bits ECDHE-RSA-AES256-SHA Curve P-384 DHE 384
|
|
Accepted TLSv1.0 128 bits ECDHE-RSA-AES128-SHA Curve 25519 DHE 253
|
|
Accepted TLSv1.0 256 bits AES256-SHA
|
|
Accepted TLSv1.0 128 bits AES128-SHA
|
|
Accepted TLSv1.0 112 bits DES-CBC3-SHA
|
|
|
|
Server Key Exchange Group(s):
|
|
TLSv1.2 128 bits secp256r1 (NIST P-256)
|
|
TLSv1.2 192 bits secp384r1 (NIST P-384)
|
|
TLSv1.2 128 bits x25519
|
|
|
|
SSL Certificate:
|
|
Certificate blob:
|
|
-----BEGIN CERTIFICATE-----
|
|
MIIFyzCCBLOgAwIBAgITHgAAAASQUnv8kTh0LwAAAAAABDANBgkqhkiG9w0BAQsF
|
|
ADBEMRMwEQYKCZImiZPyLGQBGRYDaHRiMRYwFAYKCZImiZPyLGQBGRYGc2VxdWVs
|
|
MRUwEwYDVQQDEwxzZXF1ZWwtREMtQ0EwHhcNMjIxMTE4MjEyMDM1WhcNMjMxMTE4
|
|
MjEyMDM1WjAYMRYwFAYDVQQDEw1kYy5zZXF1ZWwuaHRiMIIBIjANBgkqhkiG9w0B
|
|
AQEFAAOCAQ8AMIIBCgKCAQEAppJ4qi7+By/k2Yjy1J83ZJ1z/spO74W9tUZwPfgv
|
|
mDj0KBf4FR3IN9GtLgjVX6CHwTtez8kdl2tc58HB8o9B4myaKjzhKmRX10eYaSe0
|
|
icT5fZUoLDxCUz4ou/fbtM3AUtPEXKBokuBni+x8wM2XpUXRznXWPL3wqQFsB91p
|
|
Mub1Zz/Kmey3EZgxT43PdPY4CZJwDvpIUeXg293HG1r/yMqX31AZ4ePLeNYDpYzo
|
|
fKg4C5K/2maN+wTTZ1t6ARiqAWBQrxFRTH6vTOoT6NF+6HxALXFxxWw/7OrfJ4Wl
|
|
5Y5ui1H5vWS1ernVPE98aiJje3B5mTsPczw7oKBFEdszRQIDAQABo4IC4DCCAtww
|
|
LwYJKwYBBAGCNxQCBCIeIABEAG8AbQBhAGkAbgBDAG8AbgB0AHIAbwBsAGwAZQBy
|
|
MB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAOBgNVHQ8BAf8EBAMCBaAw
|
|
eAYJKoZIhvcNAQkPBGswaTAOBggqhkiG9w0DAgICAIAwDgYIKoZIhvcNAwQCAgCA
|
|
MAsGCWCGSAFlAwQBKjALBglghkgBZQMEAS0wCwYJYIZIAWUDBAECMAsGCWCGSAFl
|
|
AwQBBTAHBgUrDgMCBzAKBggqhkiG9w0DBzAdBgNVHQ4EFgQUIuJgX6Ee95CeVip7
|
|
lbtMDt5sWIcwHwYDVR0jBBgwFoAUYp8yo6DwOCDUYMDNbcX6UTBewxUwgcQGA1Ud
|
|
HwSBvDCBuTCBtqCBs6CBsIaBrWxkYXA6Ly8vQ049c2VxdWVsLURDLUNBLENOPWRj
|
|
LENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxD
|
|
Tj1Db25maWd1cmF0aW9uLERDPXNlcXVlbCxEQz1odGI/Y2VydGlmaWNhdGVSZXZv
|
|
Y2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50
|
|
MIG9BggrBgEFBQcBAQSBsDCBrTCBqgYIKwYBBQUHMAKGgZ1sZGFwOi8vL0NOPXNl
|
|
cXVlbC1EQy1DQSxDTj1BSUEsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049
|
|
U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1zZXF1ZWwsREM9aHRiP2NBQ2Vy
|
|
dGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5
|
|
MDkGA1UdEQQyMDCgHwYJKwYBBAGCNxkBoBIEENIKdyhMrBRIsqTPzAbls0uCDWRj
|
|
LnNlcXVlbC5odGIwDQYJKoZIhvcNAQELBQADggEBAJLkSygHvC+jUd6MD07n6vN+
|
|
/VbEboj++2qaUZjrXcZJf24t85ETixEmwP+xjsvuw8ivxV+OrPEZsipJ7cwPjxed
|
|
RcwjpeXyq7+FszZR9Q/QwgMGhwpWCLVg/e7I9HiEORu/acH5AIOsXp0oTB7N9rMC
|
|
frCIs3KAU990pyV+JhzfseVjJiiXmKeivvvLJuknwYmulanleOZSWlljckXWz29r
|
|
nKQfODM1CJN7sWoNGN+H3hVlQzJihM8qm9NO1PLinpUkPAq5JovsOvr75ZOvIgSb
|
|
Ea0hY7tIoQdoEwbZMSMCQDdOSlpI6fjJge10vCZp/YUgSL8bgtzttCGYN92LKrQ=
|
|
-----END CERTIFICATE-----
|
|
Version: 2
|
|
Serial Number: 1e:00:00:00:04:90:52:7b:fc:91:38:74:2f:00:00:00:00:00:04
|
|
Signature Algorithm: sha256WithRSAEncryption
|
|
Issuer: /DC=htb/DC=sequel/CN=sequel-DC-CA
|
|
Not valid before: Nov 18 21:20:35 2022 GMT
|
|
Not valid after: Nov 18 21:20:35 2023 GMT
|
|
Subject: /CN=dc.sequel.htb
|
|
Public Key Algorithm: NULL
|
|
RSA Public Key: (2048 bit)
|
|
RSA Public-Key: (2048 bit)
|
|
Modulus:
|
|
00:a6:92:78:aa:2e:fe:07:2f:e4:d9:88:f2:d4:9f:
|
|
37:64:9d:73:fe:ca:4e:ef:85:bd:b5:46:70:3d:f8:
|
|
2f:98:38:f4:28:17:f8:15:1d:c8:37:d1:ad:2e:08:
|
|
d5:5f:a0:87:c1:3b:5e:cf:c9:1d:97:6b:5c:e7:c1:
|
|
c1:f2:8f:41:e2:6c:9a:2a:3c:e1:2a:64:57:d7:47:
|
|
98:69:27:b4:89:c4:f9:7d:95:28:2c:3c:42:53:3e:
|
|
28:bb:f7:db:b4:cd:c0:52:d3:c4:5c:a0:68:92:e0:
|
|
67:8b:ec:7c:c0:cd:97:a5:45:d1:ce:75:d6:3c:bd:
|
|
f0:a9:01:6c:07:dd:69:32:e6:f5:67:3f:ca:99:ec:
|
|
b7:11:98:31:4f:8d:cf:74:f6:38:09:92:70:0e:fa:
|
|
48:51:e5:e0:db:dd:c7:1b:5a:ff:c8:ca:97:df:50:
|
|
19:e1:e3:cb:78:d6:03:a5:8c:e8:7c:a8:38:0b:92:
|
|
bf:da:66:8d:fb:04:d3:67:5b:7a:01:18:aa:01:60:
|
|
50:af:11:51:4c:7e:af:4c:ea:13:e8:d1:7e:e8:7c:
|
|
40:2d:71:71:c5:6c:3f:ec:ea:df:27:85:a5:e5:8e:
|
|
6e:8b:51:f9:bd:64:b5:7a:b9:d5:3c:4f:7c:6a:22:
|
|
63:7b:70:79:99:3b:0f:73:3c:3b:a0:a0:45:11:db:
|
|
33:45
|
|
Exponent: 65537 (0x10001)
|
|
X509v3 Extensions:
|
|
1.3.6.1.4.1.311.20.2:
|
|
. .D.o.m.a.i.n.C.o.n.t.r.o.l.l.e.r
|
|
X509v3 Extended Key Usage:
|
|
TLS Web Client Authentication, TLS Web Server Authentication
|
|
X509v3 Key Usage: critical
|
|
Digital Signature, Key Encipherment
|
|
S/MIME Capabilities:
|
|
0i0...*.H..
|
|
......0...*.H..
|
|
......0...`.H.e...*0...`.H.e...-0...`.H.e....0...`.H.e....0...+....0
|
|
..*.H..
|
|
..
|
|
X509v3 Subject Key Identifier:
|
|
22:E2:60:5F:A1:1E:F7:90:9E:56:2A:7B:95:BB:4C:0E:DE:6C:58:87
|
|
X509v3 Authority Key Identifier:
|
|
keyid:62:9F:32:A3:A0:F0:38:20:D4:60:C0:CD:6D:C5:FA:51:30:5E:C3:15
|
|
|
|
X509v3 CRL Distribution Points:
|
|
|
|
Full Name:
|
|
URI:ldap:///CN=sequel-DC-CA,CN=dc,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=sequel,DC=htb?certificateRevocationList?base?objectClass=cRLDistributionPoint
|
|
|
|
Authority Information Access:
|
|
CA Issuers - URI:ldap:///CN=sequel-DC-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=sequel,DC=htb?cACertificate?base?objectClass=certificationAuthority
|
|
|
|
X509v3 Subject Alternative Name:
|
|
othername:<unsupported>, DNS:dc.sequel.htb
|
|
Verify Certificate:
|
|
unable to get local issuer certificate
|
|
|
|
SSL Certificate:
|
|
Signature Algorithm: sha256WithRSAEncryption
|
|
RSA Key Strength: 2048
|
|
|
|
Subject: dc.sequel.htb
|
|
Altnames: othername:<unsupported>, DNS:dc.sequel.htb
|
|
Issuer: sequel-DC-CA
|
|
|
|
Not valid before: Nov 18 21:20:35 2022 GMT
|
|
Not valid after: Nov 18 21:20:35 2023 GMT
|
|
|