MassBleed is a SSL Vulnerability Scanner that checks for TLS/SSL related vulnerabilities like Drown, POODLE, Heart Bleed, Winshock.
Prerequisites
Make sure that all the prerequisites are satisfied.
- Is the heartbleed POC present?
- Is the openssl CCS script present?
- Is the winshock script present?
- Is unicornscan installed?
- Is nmap installed?
- Is sslscan installed?
Step 1: Download or Clone the Massbleed tool in to your system.
[email protected]:# git clone https://github.com/1N3/MassBleed.git
Step 2: Navigate in to the tool folder in your system.
[email protected]:# cd MassBleed master
Step 3: Change the installation file in to an executable format.
[email protected]:MassBleed master# chmod +777
Step 4: Install all the installation file (heartbleed.py, massbleed.sh, openssl_ccs.pl, winshock.sh) before running the main installation file (massbleed.sh) as shown in the below image.
[email protected]:# ./
Step 5: Run the tool by specifying your target to scan.
[email protected]:#./massbleed.sh port
Demo
