DNS Best PracticesDNS Records ReportSecurity Headers Best PracticesSecurity Headers ReportSSL Certificate ReportSSL/TLS Best PracticesSSL/TLS Server Configuration Report
Dashboard: SSL/TLS Server Configuration Report
This report provides a brief overview of the configuration of any SSL/TLS web server.
This report answers the following questions:
- What protocols and cipher suites does the server support?
- Does the server support any insecure cipher suites, e.g., RC4, CBC?
- Does the server support TLS fallback SCSV for preventing protocol downgrade attacks?
This dashboard contains 3 cards, 1 input and 2 tables.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-net-insightsStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select SSL/TLS Server Configuration Report dashboard.
You could also snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe dashboard run net_insights.dashboard.ssl_configuration_report --shareQueries
The dashboard uses the named queries:
- ssl_server_cbc_cipher_count
- ssl_server_configuration_checks
- ssl_server_rc4_cipher_count
- ssl_server_supported_cipher_suites
- ssl_server_supported_protocols