How to use the 'sslscan' tool to determine which protocols and cipher suites are in use in an ePolicy Orchestrator environment
Last Modified: 2023-07-20 04:51:53 Etc/GMT
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
After December 1, 2024, please log in to the Thrive Portal for support, knowledge articles, tools, and downloads. For information about using the Thrive Portal, view the Trellix Thrive Portal User Guide.
How to use the 'sslscan' tool to determine which protocols and cipher suites are in use in an ePolicy Orchestrator environment
Technical Articles ID:
KB96632
Last Modified: 2023-07-20 04:51:53 Etc/GMT Environment
ePolicy Orchestrator (ePO) 5.10.x
Summary
When you troubleshoot TLS connection issues in an ePO environment, it's often necessary to determine which protocols and cipher suites are offered by a service or process. A common tool used for this is the open-source tool Installation: On the computer where you want to run the scan, install the tool as described below. Note that you don't have to run Windows:
Windows:
Here, target is the IP address, FQDN, or hostname of the system to be scanned, and port is the required port. If you want to scan port 443 on a system called
NOTE: The command records the output to a file called sslscan.txt in the current folder. The --no-color switch turns off the colors in the output, which makes the text file more readable.
Linux / MacOS:
Here, target is the IP address, FQDN, or hostname of the system to be scanned, and port is the required port. If you want to scan port 443 on a system called
NOTE: If prompted, type the user password to continue.
NOTE: The command records the output to a file called sslscan.txt in the current folder. The --no-color switch turns off the colors in the output, which makes the text file more readable.
Affected Products |
|