This time I will use Kali Linux it is a great distro for pentesters. After all, nothing prevents you from using another distribution, such as Debian Linux. Sometimes we need to check the certificate issuance date. Nmap and curl are a very good tool for this.Both of these tools allow for advanced analysis of the […]
Java Keytool is a command-line tool that is used for managing cryptographic keys, certificates, and keystores in Java-based applications. In Linux, Java Keytool is often used for managing SSL/TLS certificates and securing web applications that run on Java-based servers like Tomcat, GlassFish, and JBoss. Some of the key features of Java Keytool in Linux include: […]
The best way to check information about domain and DNS configuration is “whois” and “dig”. This tools can provide a lot of informations. Lets try use it. First we must check that package is installed.I have already installed “dig”: In debian, you can use “dpkg -S” if you don’t have it then you should install: […]
Sometimes it is necessary to change the DNS name indication to a different IP address. As you can see in the example below, google.com currently points to: To change google.com indication to, for example – 37.187.101.239, edit the file: “/etc/resolv.conf” as root: After making this change, the effect is as follows: Windows as you see […]
A convenient way to maintain the test environment is automatic updating.However, remember to set the backup, e.g. the day before – I always set it like that in proxmoxe.The script that updates the Debian system looks like this: You can download the script from: The script cleans unnecessary deb files after the update.Keep in mind […]
This script send you e-mail notification about new updates: You can download the script from: You should set the correct e-mail address in the script, for now it is soban@soban.plNotification it’s looks something like that: Should the script be executed: Also added to the crontab, every day to extend a new update: Remember don’t to […]
Before we start upgrading the Debian system version, please make a snapshot or a possible backup of the system. Such a change entails significant changes that can damage the system. Of course, before you upgrade the system in production, it is best to upgrade to the testing environment first. The upgrade process affects the entire […]
Nmap – scanning SSL/TLS ciphers on Debian 11 In this example we are working on Debian 11 (Bullseye). First, let’s confirm the system version: Nmap is one of the most powerful network scanning tools available on Linux. It allows you to scan open ports, detect running services, identify software versions and analyze supported SSL/TLS protocols […]
SSLScan is a command-line tool used for SSL/TLS vulnerability scanning. It is used to detect SSL/TLS vulnerabilities and weaknesses on servers that use SSL/TLS. SSLScan supports all SSL and TLS protocols and cipher suites, including new ones such as TLS 1.3. SSLScan can be used to identify various SSL/TLS vulnerabilities, such as weak ciphers and […]
Soban