If memory serves there is a script in newer versions of nmap that will spit out the support cipher suites if port 443 is found open too.
-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Michael Dickey Sent: Thursday, January 21, 2010 12:10 PM To: [email protected]; PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] Force cypher suite If you`re just wanting to test what ciphers get allowed, you can do that with thcsslscan. I hope that name is correct...but it`s something from thc. openssl will work, too, but is a bit more manual. On 1/18/10, [email protected] <[email protected]> wrote: > We are testing our WAF at work and I was wondering if anyone had a > suggestion to force specific cypher suites when connecting to the sites > behind the WAF > Is curl a possibility? > Sent via BlackBerry from T-Mobile > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com ****************************************************************************** This email contains confidential and proprietary information and is not to be used or disclosed to anyone other than the named recipient of this email, and is to be used only for the intended purpose of this communication. ****************************************************************************** _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
