SSL and Web Analyzer
No credit card required
SSL and Web Analyzer
No credit card required
The SSL Checker actor scans IPs or subnets for SSL certificate details using masscan. It retrieves response headers, titles, and redirected URLs for HTTP and HTTPS. Customize parameters and set result limits for efficient scanning
What does the SSL and Web Analyzer do?
The SSL and Web Analyzer is a powerful tool that allows users to scan IP ranges, including AWS and Google Cloud networks, to discover critical information such as services running behind Web Application Firewalls (WAFs), potential vulnerabilities, subdomains, and endpoints. It operates like a Shodan-style search engine but offers deeper insights into small companies' infrastructure that larger search engines might overlook.
This actor is designed for security professionals, including hackers, bug bounty hunters, and penetration testers, to increase their attack surface and identify vulnerable endpoints across vast networks.
Key features:
- WAF Bypass: Identify IPs hidden behind WAFs.
- Fast IP Scanning: Efficiently scan millions of IP addresses in a short time.
- Subdomain Discovery: Reveal new subdomains to extend your attack surface.
- Vulnerability Detection: Identify weaknesses in web servers, services, and applications.
- Endpoint Discovery: Locate and assess potentially vulnerable endpoints.
How to Run the SSL and Web Analyzer
If you're new to SSL and Web Analyzer or ethical hacking, don't worry. The SSL and Web Analyzer tool is easy to use and highly flexible. You can either use Masscan for a fast scan or provide a list of IP addresses to skip Masscan. Here's how:
- Create a free Apify account using your email.
- Open the SSL and Web Analyzer tool in the Apify console.
- Choose whether to use Masscan for scanning by checking or unchecking the Masscan option:
- If you check the box: You must provide at least one IP range (in CIDR format).
- If you uncheck the box: You can directly provide a list of individual IP addresses, and the tool will skip the Masscan scan.
- Optionally, you can configure a proxy for the scan, Ensure that you won't be blocked by WAF and access to specific geographical regions.
- Click the “Start” button to initiate the scan.
- Analyze the results and download them in structured formats like JSON, XML, CSV, Excel, or HTML for further analysis.
Quick Video Tutorial on YouTube:
Input
To start scanning IP ranges or IP addresses, simply fill in the input form. The SSL and Web Analyzer tool recognizes the following input parameters:
[!NOTE] If you are provided more than one IP range, the result won't show up until Masscan is complete from scanning all provided IP ranges.
-
Use Masscan for Scanning (Checkbox)...: A boolean flag indicating whether or not to use Masscan for scanning.
-
CIDR or IP Addresses: A list of IP ranges in CIDR format or individual IP addresses for scanning.
- Using IP ranges (CIDR):
- Using IP Addresses:
-
Masscan Ports: (Optional) The port(s) you wish to scan with Masscan The default Port of Masscan is 443 you can add more Port if needed like (e.g., 80, 443 or 0-65535). Required only when Masscan is used.
-
Masscan Rate: (Optional) The rate limit for Masscan (number of packets per second). Required only when Masscan is used.
-
Maximum Results Limit: (Optional) Set the maximum number of results you want to receive.
-
Proxy Configuration: (Optional) Use Apify's proxy services to anonymize your scan or access results from a specific geographical location.
Example Input (Using Masscan):
1{ 2 "Ips_or_CIDR": [ 3 "3.80.0.0/12", 4 "3.208.0.0/12" 5 ], 6 "Used_Or_Not_Used_Masscan": true, 7 "masscan_port": "443", 8 "masscan_rate": 10000, 9 "max_results": 100, 10 "proxyConfiguration": { 11 "useApifyProxy": true, 12 "apifyProxyGroups": [ 13 "RESIDENTIAL" 14 ], 15 "apifyProxyCountry": "BW" 16 } 17}
Example Input (Skipping Masscan):
1{ 2 "Ips_or_CIDR": [ 3 "3.91.85.6", 4 "3.84.160.117", 5 "3.92.19.235" 6 ], 7 "Used_Or_Not_Used_Masscan": false, 8 "max_results": 33, 9 "proxyConfiguration": { 10 "useApifyProxy": true, 11 "apifyProxyGroups": [ 12 "RESIDENTIAL" 13 ], 14 "apifyProxyCountry": "BW" 15 } 16}
Additional Notes:
- You can choose how many results you want by adjusting the
max_results
parameter. - The proxyConfiguration feature allows you to run the scan using Apify's proxy services, ensuring anonymity or access to specific regions.
Output
You get the output from SSL and Web Analyzer Data Extractor stored in a tab. Here's an example of some of the output after the scan is complete :
- In this example I provided this input:
1{ 2 "Ips_or_CIDR": [ 3 "3.80.0.0/12" 4 ], 5 "Used_Or_Not_Used_Masscan": true, 6 "masscan_port": "443", 7 "masscan_rate": 10000, 8 "max_results": 2000, 9 "proxyConfiguration": { 10 "useApifyProxy": false 11 } 12}
- The output of this input:
1[ 2 { 3 "title": "", 4 "redirected_url": "", 5 "request": "https://3.94.15.209:443", 6 "port": "443", 7 "ip": "3.94.15.209", 8 "domain": "*.execute-api.us-east-1.amazonaws.com", 9 "response_text": "{\"message\":\"Forbidden\"}", 10 "response_headers": { 11 "Date": "Mon, 07 Oct 2024 23:21:14 GMT", 12 "Content-Type": "application/json", 13 "Content-Length": "23", 14 "Connection": "keep-alive", 15 "x-amzn-RequestId": "c1f2ff47-007d-481e-9a76-02f2bd2c21bc", 16 "x-amzn-ErrorType": "ForbiddenException", 17 "x-amz-apigw-id": "fTX0oGxcoAMEawg=" 18 } 19 }, 20... 21]
Who can benefit from using SSL and Web Analyzer?
- Security Assessment: Perform vulnerability assessments and identify exploitable endpoints.
- Bug Bounties: Increase your chances of finding vulnerabilities in bug bounty programs.
- Red/Blue Teaming: Simulate attacks or fortify network defenses by identifying potential entry points.
- Penetration Testing: Discover hidden servers and services for penetration testing.
Integrations with the SSL and Web Analyzer
The SSL and Web Analyzer integrates seamlessly with Apify’s platform and other tools such as:
- Slack
- Zapier
- Google Drive
- GitHub
You can also use webhooks to trigger alerts or actions whenever a scan completes.
FAQ
SSL and Web Analyzer
- How much does the SSL and Web Analyzer cost? The pricing is based on the number of results obtained. For instance, scanning 2,000 IPs costs approximately $0.33, which includes computing units, dataset writes, and external data transfer. You can estimate that scanning 1,000 IPs would cost around $0.165. Apify provides $5 worth of credits for free on their basic plan, which allows you to scan up to 30,303 IPs per month.
- Is it legal to scan IPs with the SSL and Web Analyzer? Yes, as long as you comply with relevant legal guidelines, such as obtaining permission to scan certain IP ranges, especially for companies or cloud providers.
Support
For issues and support, please create a ticket or contact fridaytechnolog@gmail.com.
Actor Metrics
6 monthly users
-
1 star
>99% runs succeeded
Created in Oct 2024
Modified a month ago