tls-attacker
diff --git a/‎.gitignore
Lines changed: 1 addition & 0 deletions b/‎.gitignore
Lines changed: 1 addition & 0 deletions
diff --git a/‎nbactions.xml
Lines changed: 3 additions & 3 deletions b/‎nbactions.xml
Lines changed: 3 additions & 3 deletions
diff --git a/‎pom.xml
Lines changed: 1 addition & 1 deletion b/‎pom.xml
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/Main.java
Lines changed: 0 additions & 19 deletions b/‎src/main/java/de/rub/nds/tlsscanner/Main.java
Lines changed: 0 additions & 19 deletions
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/MultiThreadedScanJobExecutor.java
Lines changed: 8 additions & 2 deletions b/‎src/main/java/de/rub/nds/tlsscanner/MultiThreadedScanJobExecutor.java
Lines changed: 8 additions & 2 deletions
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/ScanJob.java
Lines changed: 0 additions & 1 deletion b/‎src/main/java/de/rub/nds/tlsscanner/ScanJob.java
Lines changed: 0 additions & 1 deletion
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/ScanJobExecutor.java
Lines changed: 2 additions & 0 deletions b/‎src/main/java/de/rub/nds/tlsscanner/ScanJobExecutor.java
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/ScanJobExecutorFactory.java
Lines changed: 1 addition & 10 deletions b/‎src/main/java/de/rub/nds/tlsscanner/ScanJobExecutorFactory.java
Lines changed: 1 addition & 10 deletions
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/SingleThreadedScanJobExecutor.java
Lines changed: 4 additions & 0 deletions b/‎src/main/java/de/rub/nds/tlsscanner/SingleThreadedScanJobExecutor.java
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/main/java/de/rub/nds/tlsscanner/TlsScanner.java
Lines changed: 115 additions & 48 deletions b/‎src/main/java/de/rub/nds/tlsscanner/TlsScanner.java
Lines changed: 115 additions & 48 deletions
@@ -1,5 +1,6 @@
 target/
 apps/
+log/
 pom.xml.tag
 pom.xml.releaseBackup
 pom.xml.versionsBackup
 
@@ -10,7 +10,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
             </properties>
         </action>
@@ -24,7 +24,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-Xdebug -Xrunjdwp:transport=dt_socket,server=n,address=${jpda.address} -classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-Xdebug -Xrunjdwp:transport=dt_socket,server=n,address=${jpda.address} -classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
                 <jpda.listen>true</jpda.listen>
             </properties>
@@ -39,7 +39,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
             </properties>
         </action>
 
@@ -3,7 +3,7 @@
     <modelVersion>4.0.0</modelVersion>
     <artifactId>TLS-Scanner</artifactId>
     <groupId>de.rub.nds.tlsscanner</groupId>
-    <version>2.3</version>
+    <version>2.4</version>
     <packaging>jar</packaging>
     <dependencies>
         <dependency>
 
@@ -10,15 +10,10 @@
 
 import com.beust.jcommander.JCommander;
 import com.beust.jcommander.ParameterException;
-import de.rub.nds.tlsattacker.core.config.Config;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
 import de.rub.nds.tlsattacker.core.exceptions.ConfigurationException;
 import de.rub.nds.tlsscanner.config.ScannerConfig;
 import de.rub.nds.tlsscanner.report.SiteReport;
-import java.io.BufferedReader;
-import java.io.File;
-import java.io.FileNotFoundException;
-import java.io.FileReader;
 import java.io.IOException;
 import org.apache.logging.log4j.LogManager;
 import org.apache.logging.log4j.Logger;
@@ -58,18 +53,4 @@ public static void main(String[] args) throws IOException {
             commander.usage();
         }
     }
-
-    public static void scanFile(File f) throws FileNotFoundException, IOException {
-        GeneralDelegate delegate = new GeneralDelegate();
-        delegate.applyDelegate(Config.createConfig());
-        BufferedReader reader = new BufferedReader(new FileReader(f));
-        String line = null;
-        line = reader.readLine();
-        while ((line = reader.readLine()) != null) {
-            String host = line.split(",")[2];
-            TlsScanner scanner = new TlsScanner(host, false);
-            scanner.scan();
-        }
-        System.exit(0);
-    }
 }
@@ -8,6 +8,7 @@
  */
 package de.rub.nds.tlsscanner;
 
+import de.rub.nds.tlsattacker.core.workflow.NamedThreadFactory;
 import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
 import de.rub.nds.tlsscanner.config.ScannerConfig;
 import de.rub.nds.tlsscanner.constants.ProbeType;
@@ -37,8 +38,8 @@ public class MultiThreadedScanJobExecutor extends ScanJobExecutor {
 
     private final ExecutorService executor;
 
-    public MultiThreadedScanJobExecutor(int threadCount) {
-        executor = Executors.newFixedThreadPool(threadCount);
+    public MultiThreadedScanJobExecutor(int threadCount, String prefix) {
+        executor = Executors.newFixedThreadPool(threadCount, new NamedThreadFactory(prefix));
     }
 
     public MultiThreadedScanJobExecutor(ExecutorService executor) {
@@ -159,4 +160,9 @@ private void checkProbesDone(List<Future<ProbeResult>> futureResults, ProgressBa
             }
         }
     }   
+
+    @Override
+    public void shutdown() {
+        executor.shutdown();
+    }
 }
@@ -10,7 +10,6 @@
 
 import de.rub.nds.tlsscanner.probe.TlsProbe;
 import de.rub.nds.tlsscanner.report.after.AfterProbe;
-import java.util.LinkedList;
 import java.util.List;
 
 /**
 
@@ -15,4 +15,6 @@
 public abstract class ScanJobExecutor {
 
     public abstract SiteReport execute(ScannerConfig config, ScanJob scanJob);
+
+    public abstract void shutdown();
 }
@@ -1,24 +1,15 @@
-/*
- * To change this license header, choose License Headers in Project Properties.
- * To change this template file, choose Tools | Templates
- * and open the template in the editor.
- */
 package de.rub.nds.tlsscanner;
 
 import de.rub.nds.tlsscanner.config.ScannerConfig;
 
-/**
- *
- * @author robert
- */
 public class ScanJobExecutorFactory {
 
     public static ScanJobExecutor getScanJobExecutor(ScannerConfig config) {
         switch (config.getThreads()) {
             case 1:
                 return new SingleThreadedScanJobExecutor();
             default:
-                return new MultiThreadedScanJobExecutor(config.getThreads());
+                return new MultiThreadedScanJobExecutor(config.getThreads(), config.getClientDelegate().getHost());
         }
     }
 }
@@ -128,4 +128,8 @@ public SiteReport execute(ScannerConfig config, ScanJob scanJob) {
             return report;
         }
     }
+
+    @Override
+    public void shutdown() {
+    }
 }
@@ -10,20 +10,22 @@
 
 import de.rub.nds.tlsattacker.attacks.connectivity.ConnectivityChecker;
 import de.rub.nds.tlsattacker.core.config.Config;
-import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
-import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
+import de.rub.nds.tlsattacker.core.workflow.NamedThreadFactory;
+import de.rub.nds.tlsattacker.core.workflow.ParallelExecutor;
 import de.rub.nds.tlsscanner.config.ScannerConfig;
 import de.rub.nds.tlsscanner.constants.ProbeType;
 import de.rub.nds.tlsscanner.probe.BleichenbacherProbe;
 import de.rub.nds.tlsscanner.probe.CertificateProbe;
 import de.rub.nds.tlsscanner.probe.CiphersuiteOrderProbe;
 import de.rub.nds.tlsscanner.probe.CiphersuiteProbe;
+import de.rub.nds.tlsscanner.probe.CommonBugProbe;
 import de.rub.nds.tlsscanner.probe.CompressionsProbe;
 import de.rub.nds.tlsscanner.probe.Cve20162107Probe;
 import de.rub.nds.tlsscanner.probe.DrownProbe;
 import de.rub.nds.tlsscanner.probe.EarlyCcsProbe;
 import de.rub.nds.tlsscanner.probe.ExtensionProbe;
 import de.rub.nds.tlsscanner.probe.HeartbleedProbe;
+import de.rub.nds.tlsscanner.probe.HttpHeaderProbe;
 import de.rub.nds.tlsscanner.probe.InvalidCurveProbe;
 import de.rub.nds.tlsscanner.probe.MacProbe;
 import de.rub.nds.tlsscanner.probe.NamedCurvesProbe;
@@ -40,83 +42,148 @@
 import de.rub.nds.tlsscanner.probe.TokenbindingProbe;
 import de.rub.nds.tlsscanner.report.after.AfterProbe;
 import de.rub.nds.tlsscanner.report.after.FreakAfterProbe;
+import de.rub.nds.tlsscanner.report.after.LogjamAfterprobe;
 import de.rub.nds.tlsscanner.report.after.Sweet32AfterProbe;
 import java.util.LinkedList;
 import java.util.List;
-import org.apache.logging.log4j.Level;
-import org.apache.logging.log4j.core.config.Configurator;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
 
 /**
  *
  * @author Robert Merget - [email protected]
  */
 public class TlsScanner {
 
+    private final Logger LOGGER = LogManager.getLogger();
+
     private final ScanJobExecutor executor;
+    private final ParallelExecutor parallelExecutor;
     private final ScannerConfig config;
-
-    public TlsScanner(String websiteHost, boolean attackingScans) {
-        config = new ScannerConfig(new GeneralDelegate());
-        this.executor = ScanJobExecutorFactory.getScanJobExecutor(config);
-        ClientDelegate clientDelegate = (ClientDelegate) config.getDelegateList().get(1);
-        clientDelegate.setHost(websiteHost);
-        Configurator.setAllLevels("de.rub.nds.tlsattacker", Level.WARN);
-    }
+    private final boolean closeAfterFinish;
+    private final boolean closeAfterFinishParallel;
+    private final List<TlsProbe> phaseOneTestList;
+    private final List<TlsProbe> phaseTwoTestList;
+    private final List<AfterProbe> afterList;
 
     public TlsScanner(ScannerConfig config) {
         this.executor = ScanJobExecutorFactory.getScanJobExecutor(config);
         this.config = config;
+        closeAfterFinish = true;
+        closeAfterFinishParallel = true;
+        parallelExecutor = new ParallelExecutor(config.getAggroLevel(), 3, new NamedThreadFactory(config.getClientDelegate().getHost() + "-Worker"));
+        this.phaseOneTestList = new LinkedList<>();
+        this.phaseTwoTestList = new LinkedList<>();
+        this.afterList = new LinkedList<>();
+        fillDefaultProbeLists();
     }
 
     public TlsScanner(ScannerConfig config, ScanJobExecutor executor) {
         this.config = config;
         this.executor = executor;
+        closeAfterFinish = false;
+        closeAfterFinishParallel = true;
+        parallelExecutor = new ParallelExecutor(config.getAggroLevel(), 3, new NamedThreadFactory(config.getClientDelegate().getHost() + "-Worker"));
+        this.phaseOneTestList = new LinkedList<>();
+        this.phaseTwoTestList = new LinkedList<>();
+        this.afterList = new LinkedList<>();
+        fillDefaultProbeLists();
     }
 
-    public SiteReport scan() {
-        List<TlsProbe> phaseOneTestList = new LinkedList<>();
-        List<TlsProbe> phaseTwoTestList = new LinkedList<>();
+    public TlsScanner(ScannerConfig config, ScanJobExecutor executor, ParallelExecutor parallelExecutor) {
+        this.config = config;
+        this.executor = executor;
+        this.parallelExecutor = parallelExecutor;
+        closeAfterFinish = false;
+        closeAfterFinishParallel = false;
+        this.phaseOneTestList = new LinkedList<>();
+        this.phaseTwoTestList = new LinkedList<>();
+        this.afterList = new LinkedList<>();
+        fillDefaultProbeLists();
+    }
 
-        if (prechecks()) {
-            phaseOneTestList.add(new SniProbe(config));
-            phaseOneTestList.add(new CompressionsProbe(config));
-            phaseOneTestList.add(new NamedCurvesProbe(config));
-            phaseOneTestList.add(new CertificateProbe(config));
-            phaseOneTestList.add(new ProtocolVersionProbe(config));
-            phaseOneTestList.add(new CiphersuiteProbe(config));
-            phaseOneTestList.add(new CiphersuiteOrderProbe(config));
-            phaseOneTestList.add(new ExtensionProbe(config));
-            phaseOneTestList.add(new Tls13Probe(config));
-            phaseOneTestList.add(new TokenbindingProbe(config));
+    public TlsScanner(ScannerConfig config, ScanJobExecutor executor, ParallelExecutor parallelExecutor, List<TlsProbe> phaseOneTestList, List<TlsProbe> phaseTwoTestList, List<AfterProbe> afterList) {
+        this.executor = executor;
+        this.parallelExecutor = parallelExecutor;
+        this.config = config;
+        this.phaseOneTestList = phaseOneTestList;
+        this.phaseTwoTestList = phaseTwoTestList;
+        this.afterList = afterList;
+        closeAfterFinish = false;
+        closeAfterFinishParallel = false;
+    }
 
-            phaseTwoTestList.add(new ResumptionProbe(config));
-            phaseTwoTestList.add(new RenegotiationProbe(config));
-            phaseTwoTestList.add(new HeartbleedProbe(config));
-            phaseTwoTestList.add(new PaddingOracleProbe(config));
-            phaseTwoTestList.add(new BleichenbacherProbe(config));
-            phaseTwoTestList.add(new PoodleProbe(config));
-            phaseTwoTestList.add(new TlsPoodleProbe(config));
-            phaseTwoTestList.add(new Cve20162107Probe(config));
-            phaseTwoTestList.add(new InvalidCurveProbe(config));
-            phaseTwoTestList.add(new DrownProbe(config));
-            phaseTwoTestList.add(new EarlyCcsProbe(config));
-            phaseTwoTestList.add(new MacProbe(config));
+    private void fillDefaultProbeLists() {
+        phaseOneTestList.add(new CommonBugProbe(config, parallelExecutor));
+        phaseOneTestList.add(new SniProbe(config, parallelExecutor));
+        phaseOneTestList.add(new CompressionsProbe(config, parallelExecutor));
+        phaseOneTestList.add(new NamedCurvesProbe(config, parallelExecutor));
+        phaseOneTestList.add(new CertificateProbe(config, parallelExecutor));
+        phaseOneTestList.add(new ProtocolVersionProbe(config, parallelExecutor));
+        phaseOneTestList.add(new CiphersuiteProbe(config, parallelExecutor));
+        phaseOneTestList.add(new CiphersuiteOrderProbe(config, parallelExecutor));
+        phaseOneTestList.add(new ExtensionProbe(config, parallelExecutor));
+        phaseOneTestList.add(new Tls13Probe(config, parallelExecutor));
+        phaseOneTestList.add(new TokenbindingProbe(config, parallelExecutor));
+        phaseOneTestList.add(new HttpHeaderProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new ResumptionProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new RenegotiationProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new HeartbleedProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new PaddingOracleProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new BleichenbacherProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new PoodleProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new TlsPoodleProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new Cve20162107Probe(config, parallelExecutor));
+        phaseTwoTestList.add(new InvalidCurveProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new DrownProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new EarlyCcsProbe(config, parallelExecutor));
+        phaseTwoTestList.add(new MacProbe(config, parallelExecutor));
+        afterList.add(new Sweet32AfterProbe());
+        afterList.add(new FreakAfterProbe());
+        afterList.add(new LogjamAfterprobe());
+    }
+
+    public SiteReport scan() {
+        boolean isConnectable = false;
+        try {
+            if (isConnectable()) {
+                LOGGER.debug(config.getClientDelegate().getHost() + " is connectable");
+                if (speaksTls()) {
+                    LOGGER.debug(config.getClientDelegate().getHost() + " is connectable");
+                    ScanJob job = new ScanJob(phaseOneTestList, phaseTwoTestList, afterList);
+                    SiteReport report = executor.execute(config, job);
+                    return report;
+                } else {
+                    isConnectable = true;
+                }
+            }
+            SiteReport report = new SiteReport(config.getClientDelegate().getHost(), new LinkedList<ProbeType>(), config.isNoColor());
+            report.setServerIsAlive(isConnectable);
+            report.setSupportsSslTls(false);
+            return report;
+        } finally {
+            closeExecutorsIfNeeded();
+        }
+    }
 
-            List<AfterProbe> afterList = new LinkedList<>();
-            afterList.add(new Sweet32AfterProbe());
-            afterList.add(new FreakAfterProbe());
-            ScanJob job = new ScanJob(phaseOneTestList, phaseTwoTestList, afterList);
-            return executor.execute(config, job);
+    private void closeExecutorsIfNeeded() {
+        if (closeAfterFinish) {
+            executor.shutdown();
+        }
+        if (closeAfterFinishParallel) {
+            parallelExecutor.shutdown();
         }
-        // testList.add(new SignatureAndHashAlgorithmProbe(websiteHost));
-        SiteReport report = new SiteReport(config.getClientDelegate().getHost(), new LinkedList<ProbeType>(), config.isNoColor());
-        report.setServerIsAlive(false);
-        return report;
     }
 
-    public boolean prechecks() {
+    public boolean isConnectable() {
         Config tlsConfig = config.createConfig();
         ConnectivityChecker checker = new ConnectivityChecker(tlsConfig.getDefaultClientConnection());
         return checker.isConnectable();
     }
+
+    private boolean speaksTls() {
+        Config tlsConfig = config.createConfig();
+        ConnectivityChecker checker = new ConnectivityChecker(tlsConfig.getDefaultClientConnection());
+        return checker.speaksTls(tlsConfig);
+    }
 }
Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,7 @@`
`8`	`8`	`*/`
`9`	`9`	`package de.rub.nds.tlsscanner;`
`10`	`10`
	`11`	`+import de.rub.nds.tlsattacker.core.workflow.NamedThreadFactory;`
`11`	`12`	`import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;`
`12`	`13`	`import de.rub.nds.tlsscanner.config.ScannerConfig;`
`13`	`14`	`import de.rub.nds.tlsscanner.constants.ProbeType;`
`@@ -37,8 +38,8 @@ public class MultiThreadedScanJobExecutor extends ScanJobExecutor {`
`37`	`38`
`38`	`39`	`private final ExecutorService executor;`
`39`	`40`
`40`		`- public MultiThreadedScanJobExecutor(int threadCount) {`
`41`		`- executor = Executors.newFixedThreadPool(threadCount);`
	`41`	`+ public MultiThreadedScanJobExecutor(int threadCount, String prefix) {`
	`42`	`+ executor = Executors.newFixedThreadPool(threadCount, new NamedThreadFactory(prefix));`
`42`	`43`	`}`
`43`	`44`
`44`	`45`	`public MultiThreadedScanJobExecutor(ExecutorService executor) {`
`@@ -159,4 +160,9 @@ private void checkProbesDone(List<Future<ProbeResult>> futureResults, ProgressBa`
`159`	`160`	`}`
`160`	`161`	`}`
`161`	`162`	`}`
	`163`	`+`
	`164`	`+ @Override`
	`165`	`+ public void shutdown() {`
	`166`	`+ executor.shutdown();`
	`167`	`+ }`
`162`	`168`	`}`
Original file line number	Diff line number	Diff line change
`@@ -15,4 +15,6 @@`
`15`	`15`	`public abstract class ScanJobExecutor {`
`16`	`16`
`17`	`17`	`public abstract SiteReport execute(ScannerConfig config, ScanJob scanJob);`
	`18`	`+`
	`19`	`+ public abstract void shutdown();`
`18`	`20`	`}`
Original file line number	Diff line number	Diff line change
`@@ -128,4 +128,8 @@ public SiteReport execute(ScannerConfig config, ScanJob scanJob) {`
`128`	`128`	`return report;`
`129`	`129`	`}`
`130`	`130`	`}`
	`131`	`+`
	`132`	`+ @Override`
	`133`	`+ public void shutdown() {`
	`134`	`+ }`
`131`	`135`	`}`