Nmap Development mailing list archives

Re: Nmap not discovering the SSL Certificates in Wolfssl setup

From: Daniel Miller <bonsaiviking () gmail com>
Date: Sun, 14 Feb 2016 08:50:32 -0600

Saurabh,

Your Nmap output shows you scanning 127.0.0.0, which Nmap shows is "down,"
so no port scan or script is run. Can you provide debug output (with -d
--script-trace) for scanning 127.0.0.1 instead?

Dan

On Wed, Feb 10, 2016 at 12:08 AM, Saurabh Dublish <
Saurabh_Dublish () symantec com> wrote:

Hi all,



I am resending the email with more proper details how I used the setup.





I am running nmap in wolfssl setup and nmap is not discovering
certificates in wolfssl setup. I have installed wolfssl setup 3.8.0 and
using wolfssl-example by github and running “server.tls” server but nmap is
not discovering the certificates but while connecting by openssl client I
am able to discover the certificates. Please help me why nmap is not
working.



But nmap is running fine the ssl-enum-cihers script and is detecting the
ciphers.In my previuos mail I mentioned it was not working but it is
working fine.



Now only Nmap is not discovering the certificates in wolfssl.



I am enclosing the nmap output, nmap output with debug option , the
server-tls code and openssl output with this mail.





Commands run are



Ø  Install and build Wolfssl and wolfssl-examples by following steps from
https://wolfssl.com/wolfSSL/download/downloadForm.php  and
https://github.com/wolfSSL/wolfssl-examples



Ø  Then I unzip the file wolfssl file download from above site.



Ø  unzip wolfssl-3.8.0



Ø  Then build it by



Ø  ./configure --prefix=/home/saurabh/install/wolfSSL/3.8.0/
--enable-opensslextra  --enable-lighty --enable-secure-renegotiation
--enable-webserver

Ø  Then did make

Ø   Make install





Ø  unzip the wolfssl-example-master file downloaded from github as

Ø  unzip wolfssl-example-master.zip



build wolfssl examples.

Ø  Examples/tls

Ø  Makefile changes

Ø    CFLAGS=-Wall -I/home/saurabh/install/wolfSSL/3.8.0/include/

Ø    LIBS=-L /home/saurabh/install/wolfSSL/3.8.0/lib/ -lwolfssl



Ø  Then did a make



Ø  Then I go to the wolfssl-example folder and go to tls folder



Ø  cd /home/saurabh/wolfssl-examples-master/tls



Ø  Then run the server as ./server.tls



Ø  By Default server-tls will start server on port 11111







Ø  Now I open nmap



Ø  nmap -–script +ssl-cert 127.0.0.1 11111



Ø  but if we use openssl it discovers the cert





Ø  ./openssl s_client -connect 127.0.0.1:11111



Thanks

Saurabh



_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 09)
- FW: Nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 09)
- Re: Nmap not discovering the SSL Certificates in Wolfssl setup Daniel Miller (Feb 14)
  - RE: Nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 15)
  - RE: Nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 15)
  - FW: Nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 15)
- <Possible follow-ups>
- nmap not discovering the SSL Certificates in Wolfssl setup Saurabh Dublish (Feb 10)