Hi all
new to the product/community.
Does anyone know how to extend the “SSL/TLS: Report Vulnerable Cipher Suites for HTTPS” Scan to include RDP (3389/tcp) as well (or likewise SQL…)?
Current Scan does not detect this issue though being a TCP Port, which as stated should be reported as well.
GSA Version 24.6.1
Thanks for your help!
Hello,
and welcome to this community forum. As clearly stated in the script name HTTPS and in the summary:
service where attack vectors exists only on HTTPS services
and in the affected tag of the VT:
All services accepting vulnerable SSL/TLS cipher suites via HTTPS.
this VT targets only HTTPS services and thus it is expected that it won’t report for RDP, SQL or other non-HTTP services. Thus it also can’t be extended to include such services.