Deploying to gh-pages from @ e7bcd9b 🚀

report/aHR0cHM6Ly93d3cuanVzdGljZS5mcg==/nmapvuln.html

@@ -54,7 +54,7 @@
 <h1>Scan Report<br><small>Nmap 7.92</small>
 </h1>
 <pre style="white-space:pre-wrap; word-wrap:break-word;">nmap -sV --script vulners --script-args mincvss=5.0 -oA /data/nmapvuln www.justice.fr</pre>
-<p class="lead">Sun Apr 14 03:20:02 2024 – Sun Apr 14 03:22:43 2024<br>1 hosts scanned.
+<p class="lead">Sun Apr 21 01:43:31 2024 – Sun Apr 21 01:46:11 2024<br>1 hosts scanned.
               1 hosts up.
               0 hosts down.
             </p>

report/aHR0cHM6Ly93d3cuanVzdGljZS5mcg==/testssl.html

@@ -21,11 +21,11 @@
 ###########################################################</span>
 
  Using &quot;OpenSSL 1.0.2-bad (1.0.2k-dev)&quot; [~183 ciphers]
- on fv-az1245-596:/home/testssl/bin/openssl.Linux.x86_64
+ on fv-az651-720:/home/testssl/bin/openssl.Linux.x86_64
  (built: &quot;Sep  1 14:03:44 2022&quot;, platform: &quot;linux-x86_64&quot;)
 
 
-<span style="color:white;background-color:black;"> Start 2024-04-14 03:18:18                --&gt;&gt; 185.24.184.176:443 (www.justice.fr) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Start 2024-04-21 01:41:46                --&gt;&gt; 185.24.184.176:443 (www.justice.fr) &lt;&lt;--</span>
 
  rDNS (185.24.184.176):  --
  Service detected:       HTTP
@@ -103,7 +103,7 @@
 <span style="font-weight:bold;"> Trust (hostname)             </span><span style="color:#008817;">Ok via SAN and CN</span> (SNI mandatory)
 <span style="font-weight:bold;"> Chain of trust</span>               <span style="color:#008817;">Ok   </span><span style="color:#cd00cd;"></span>
 <span style="font-weight:bold;"> EV cert</span> (experimental)       no 
-<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">326 &gt;= 60 days</span> (2024-03-06 23:00 --&gt; 2025-03-06 22:59)
+<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">319 &gt;= 60 days</span> (2024-03-06 23:00 --&gt; 2025-03-06 22:59)
 <span style="font-weight:bold;"> ETS/&quot;eTLS&quot;</span>, visibility info  not present
 <span style="font-weight:bold;"> Certificate Revocation List  </span>http://crl.certigna.fr/servicesca.crl
                               http://crl.dhimyotis.com/servicesca.crl
@@ -123,14 +123,16 @@
 <span style="text-decoration:underline;font-weight:bold;"> Testing HTTP header response @ &quot;/&quot; </span>
 
 <span style="font-weight:bold;"> HTTP Status Code           </span>  200 OK
-<span style="font-weight:bold;"> HTTP clock skew              </span>Got no HTTP time, maybe try different URL?
+<span style="font-weight:bold;"> HTTP clock skew              </span>-80278 sec from localtime
 <span style="font-weight:bold;"> Strict Transport Security    </span><span style="color:#a86437;">not offered</span>
 <span style="font-weight:bold;"> Public Key Pinning           </span>--
-<span style="font-weight:bold;"> Server banner                </span>BigIP
+<span style="font-weight:bold;"> Server banner                </span>(no &quot;Server&quot; line in header, interesting!)
 <span style="font-weight:bold;"> Application banner           </span>--
-<span style="font-weight:bold;"> Cookie(s)                    </span>(none issued at &quot;/&quot;)
-<span style="font-weight:bold;"> Security headers             </span><span style="color:#c05600;">--</span>
-<span style="font-weight:bold;"> Reverse Proxy banner         </span>--
+<span style="font-weight:bold;"> Cookie(s)                    </span>2 issued: <span style="color:#c05600;">NONE</span> secure, <span style="color:#008817;">1/2</span> HttpOnly
+<span style="font-weight:bold;"> Security headers             </span><span style="color:#008817;">X-Frame-Options</span>: SAMEORIGIN
+                              <span style="color:#008817;">X-Content-Type-Options</span>: nosniff
+                              Cache-Control: public, max-age=86400
+<span style="font-weight:bold;"> Reverse Proxy banner         </span><span style="color:#8a7237;font-weight:bold;">X-Cache</span>: HIT
 
 
 <span style="text-decoration:underline;font-weight:bold;"> Testing vulnerabilities </span>
@@ -142,7 +144,8 @@
 <span style="font-weight:bold;"> Secure Renegotiation (RFC 5746)           </span><span style="color:#008817;font-weight:bold;">supported (OK)</span>
 <span style="font-weight:bold;"> Secure Client-Initiated Renegotiation     </span><span style="color:#008817;">not vulnerable (OK)</span> -- mitigated (disconnect after 6/10 attempts)
 <span style="font-weight:bold;"> CRIME, TLS </span>(CVE-2012-4929)                <span style="color:#008817;">not vulnerable (OK)</span>
-<span style="font-weight:bold;"> BREACH</span> (CVE-2013-3587)                    <span style="color:#008817;">no gzip/deflate/compress/br HTTP compression (OK) </span> - only supplied &quot;/&quot; tested
+<span style="font-weight:bold;"> BREACH</span> (CVE-2013-3587)                    <span style="color:#c05600;">potentially NOT ok, &quot;gzip&quot; HTTP compression detected.</span> - only supplied &quot;/&quot; tested
+                                           Can be ignored for static pages or if no secrets in the page
 <span style="font-weight:bold;"> POODLE, SSL</span> (CVE-2014-3566)               <span style="color:#008817;font-weight:bold;">not vulnerable (OK)</span>, no SSLv3 support
 <span style="font-weight:bold;"> TLS_FALLBACK_SCSV</span> (RFC 7507)              <span style="color:#008817;">No fallback possible (OK)</span>, no protocol below TLS 1.2 offered
 <span style="font-weight:bold;"> SWEET32</span> (CVE-2016-2183, CVE-2016-6329)    <span style="color:#008817;font-weight:bold;">not vulnerable (OK)</span>
@@ -209,7 +212,7 @@
 <span style="font-weight:bold;"> Overall Grade                </span><span style="color:#008817;font-weight:bold;">A</span>
 <span style="font-weight:bold;"> Grade cap reasons            </span>Grade capped to A. HSTS is not offered
 
-<span style="color:white;background-color:black;"> Done 2024-04-14 03:20:00 [ 104s] --&gt;&gt; 185.24.184.176:443 (www.justice.fr) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Done 2024-04-21 01:43:30 [ 106s] --&gt;&gt; 185.24.184.176:443 (www.justice.fr) &lt;&lt;--</span>
 
 
 </pre>

report/aHR0cHM6Ly9zZWFyY2guanVkaWxpYnJlLmlv/nmapvuln.html

@@ -54,7 +54,7 @@
 <h1>Scan Report<br><small>Nmap 7.92</small>
 </h1>
 <pre style="white-space:pre-wrap; word-wrap:break-word;">nmap -sV --script vulners --script-args mincvss=5.0 -oA /data/nmapvuln search.judilibre.io</pre>
-<p class="lead">Sun Apr 14 01:00:37 2024 – Sun Apr 14 01:01:01 2024<br>1 hosts scanned.
+<p class="lead">Sun Apr 21 00:51:22 2024 – Sun Apr 21 00:51:47 2024<br>1 hosts scanned.
               1 hosts up.
               0 hosts down.
             </p>

report/aHR0cHM6Ly9zZWFyY2guanVkaWxpYnJlLmlv/testssl.html

@@ -21,11 +21,11 @@
 ###########################################################</span>
 
  Using &quot;OpenSSL 1.0.2-bad (1.0.2k-dev)&quot; [~183 ciphers]
- on fv-az1251-485:/home/testssl/bin/openssl.Linux.x86_64
+ on fv-az651-720:/home/testssl/bin/openssl.Linux.x86_64
  (built: &quot;Sep  1 14:03:44 2022&quot;, platform: &quot;linux-x86_64&quot;)
 
 
-<span style="color:white;background-color:black;"> Start 2024-04-14 00:59:42                --&gt;&gt; 51.159.85.176:443 (search.judilibre.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Start 2024-04-21 00:49:56                --&gt;&gt; 51.159.85.176:443 (search.judilibre.io) &lt;&lt;--</span>
 
  rDNS (51.159.85.176):   51-159-85-176.lb.fr-par.scw.cloud.
  Service detected:       HTTP
@@ -89,7 +89,7 @@
                               &quot;extended master secret/#23&quot;
 <span style="font-weight:bold;"> Session Ticket RFC 5077 hint </span>no -- no lifetime advertised
 <span style="font-weight:bold;"> SSL Session ID support       </span>yes
-<span style="font-weight:bold;"> Session Resumption           </span>Tickets no, ID: no
+<span style="font-weight:bold;"> Session Resumption           </span>Tickets no, ID: yes
 <span style="font-weight:bold;"> TLS clock skew</span>               Random values, no fingerprinting possible 
 <span style="font-weight:bold;"> Certificate Compression      </span>none
 <span style="font-weight:bold;"> Client Authentication        </span>none
@@ -105,7 +105,7 @@
 <span style="font-weight:bold;"> Trust (hostname)             </span><span style="color:#008817;">Ok via SAN and CN</span> (SNI mandatory)
 <span style="font-weight:bold;"> Chain of trust</span>               <span style="color:#008817;">Ok   </span><span style="color:#cd00cd;"></span>
 <span style="font-weight:bold;"> EV cert</span> (experimental)       no 
-<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">45 &gt;= 30 days</span> (2024-02-29 07:17 --&gt; 2024-05-29 07:17)
+<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">38 &gt;= 30 days</span> (2024-02-29 07:17 --&gt; 2024-05-29 07:17)
 <span style="font-weight:bold;"> ETS/&quot;eTLS&quot;</span>, visibility info  not present
 <span style="font-weight:bold;"> Certificate Revocation List  </span>--
 <span style="font-weight:bold;"> OCSP URI                     </span>http://r3.o.lencr.org
@@ -211,7 +211,7 @@
 <span style="font-weight:bold;"> Final Score                  </span>81
 <span style="font-weight:bold;"> Overall Grade                </span><span style="color:#008817;font-weight:bold;">A+</span>
 
-<span style="color:white;background-color:black;"> Done 2024-04-14 01:00:35 [  56s] --&gt;&gt; 51.159.85.176:443 (search.judilibre.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Done 2024-04-21 00:51:20 [  86s] --&gt;&gt; 51.159.85.176:443 (search.judilibre.io) &lt;&lt;--</span>
 
 
 </pre>