8.22.2009

NSM: SSL handshake analysis with ssldump

:: Total SSL Handshakes: ssldump -n -r [capture_file] | grep Handshake | wc -l
:: Total ClientHellos: ssldump -n -r [capture_file] | grep ClientHello | wc -l
:: List SSL versions negotiated: ssldump -n -r [capture_file] | grep Version | sort | uniq -c | sort -nr
:: List CipherSuites negotiated: ssldump -n -r [capture_file] | grep "cipherSuite" | sort | uniq -c | sort -nr
:: List ServerHello events: ssldump -n -r [capture_file] | grep "ServerHello" | sort | uniq -c | sort -nr
:: Total ChangeCipherSpec events: ssldump -n -r [capture_file] | grep ChangeCipherSpec | wc -l

No comments: