Eikonal Blog

2012.02.14

Tooltips

Filed under: crypto, hashes, infosec, scripting, security testing, tools, VA (Vulnerability Assessment), web security, web tools — Tags: , , , — sandokan65 @ 11:45

OpenSSL

  • Get web (https) server’s banner: 
      openssl s_client -connect:IPAddress:443

    after connection is established type in “HEAD / HTTP/1.0” and press enter

  • Generating unix-style MD5 hash: 
      openssl passwd -1 -salt QIGCa pippo

    produces: $1$QIGCa$/ruJs8AvmrknzKTzM2TYE.

  • Converting a DER-encoded Certificate to PEM format: 
      openssl x509 -in InputCertFile.crt -inform DER -out NewCertFile.pem -outform PEM

  • Converting a PKCS12-encoded (or .pfx) Certificate to PEM format: 
      openssl pkcs12 -in InputCertFile.p12 -out NewCertFile.pem -nodes -cacerts

Java keytool

  • Download the CA certificate from the proxy and convert it to PEM format: 
      /usr/java/default/bin/keytool -import -trustcacerts -file  -alias CA_ALIAS -keystore /usr/java/default/lib/security/cacerts -storepass changeit

More:

Leave a Comment »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Cancel

Connecting to %s

Theme: Silver is the New Black. Blog at WordPress.com.

Follow

Get every new post delivered to your Inbox.