NMAP TLS/SSL cipher suites a particular website offers

List the SSL/TLS cipher suites a particular website offers

 Command Line

Nmap with ssl-enum-ciphers 

This will be a very simple and and  faster way to get a list of available ciphers from a network service.  and nmap will provide a strength rating of strong, weak, or unknown for each available cipher. Which will help to determine overall strength of server security.

nmap --script ssl-enum-ciphers -p 443 www.example.com

To install nmap on osx run : brew install nmap


sslscan is a also nice little utility to get details regarding website ssl.
To install on osx run : brew install sslscan

Online Tool

SSL Labs‘ website also have good tool to test tls/ssl ciphers and other utility.

Source : http://superuser.com/questions/109213/how-do-i-list-the-ssl-tls-cipher-suites-a-particular-website-offers



OpenSSH 7.3 on CentOs 6.7

A simple script to upgrade OpneSSH on CentOs 6.7.

To use you can run following command with root user

bash <( curl -s https://gist.githubusercontent.com/faishal/add912b9b4c3899ec26c488a91446a84/raw/e9297f357b35c7da9d1bbd1a401a5c38434b068b/upgrade-openssh-7.3p1-centos-6.7.sh ) 
Dictionary listing for Security

Keep sensitive info out of your email & chat logs

During work, We share passwords or some other sensitive piece of information with a friend or coworker. The problem is When you do it over chat or email, that data just got really insecure and easy to find, if some one got access of  your account, they can get that plain text data from history.

There are multiple option available to avoid this kind of mistakes, I use Self-Destructing Messages app called onetimesecret which I found really good 🙂

How Do You Share Sensitive Data Without Leaving a footprints?