Search host for compromised SSL/HTTPS-Keys

Searches for compromised SSL/HTTPS-Keys.

Most SSL-Keys generated on Debian-based Linux-distributions between 2006 and 2008 are easy to compromise. Serversniff will check https-server for compromised keys. See more infos on this topic in the Debian-wiki at [[http://wiki.debian.org/SSLkeys]].
Please note: This is a quick and dirty-check supporting only keysizes of 1024 and 2048 bit. It will find the most common, but NOT ALL compromised keys!

Please use sshreport.php to check for flawed SSH-Keys. We implemented a rather tight abuse-limit on this script to avoid mass-scanning.


Please direct questions, suggestions, wishes, bugreports and chocolate to tom@serversniff.net