WeakSSL is a Rust-based CLI that orchestrates multiple TLS/SSL scanners (nmap, sslscan, sslyze, testssl, cipherscan, ssh-audit, and openssl) to discover weak ciphers and misconfigurations. It is a rewrite of the legacy shell scripts in legacy/.

The new CLI focuses on portability and zero external Rust dependencies, running the external tools when they are available and skipping gracefully when they are not.

• Orchestrates scans using popular tools and collates outputs to simple HTML reports.
• Creates a workspace with subfolders for results and reports.
• Accepts a single target, a file of targets, port lists, and a working directory override.
• Runs targeted subsets (--nmap, --sslscan, --sslyze, --testssl, --cipherscan, --ssh-audit, --weak-openssl) or --all.

• Prerequisites: a Rust toolchain (1.70+) if installing from source. External scanner tools are optional but recommended (nmap, sslscan, sslyze, testssl, cipherscan, ssh-audit, openssl).

Install via script (downloads release when available, falls back to source build):

# Linux / macOS
curl -fsSL https://raw.githubusercontent.com/gbiagomba/WeakSSL/refs/heads/master/scripts/install.sh | bash

# Windows (PowerShell as Admin)
irm https://raw.githubusercontent.com/gbiagomba/WeakSSL/refs/heads/master/scripts/install.ps1 | iex

Build from source (local clone):

make build
sudo install -m 0755 target/release/weakssl /usr/local/bin/weakssl

Run locally without installing:

make run ARGS="--help"

weakssl [OPTIONS]

Options:
  -h, --help                 Show help
  -V, --version              Show version
  -t, --target <HOST>        Single target host/IP
  -f, --file <PATH>          File with targets (one per line)
  -p, --ports <LIST>         Comma-separated ports (default set from legacy)
  -w, --workspace <DIR>      Working directory (default: CWD)
  --nmap                     Run nmap discovery + TLS scripts
  --sslscan                  Run sslscan across targets/ports
  --sslyze                   Run sslyze across targets/ports
  --testssl                  Run testssl.sh across targets/ports
  --cipherscan               Run mozilla cipherscan (and analyze)
  --ssh-audit                Run ssh-audit across targets/ports
  --weak-openssl             Probe with openssl s_client
  -a, --all                  Run all available tools

Example:

weakssl --nmap --sslscan --file hosts.txt -p 443,8443 -w ./workspace

Outputs are written to ./Reports under the chosen workspace. If aha is not installed, reports are simple HTML with preformatted text.

The previous shell scripts are preserved in legacy/ for reference but are no longer the primary entrypoint.

• rsc/: Supporting resources and references used by scanners and reports.
  • Includes a local copy of ssl-enum-ciphers.nse (for reference/offline use), sslyze.xsl (stylesheet for transforming sslyze XML), and OpenSSL_Ciphers.txt (cipher name references). The Rust CLI does not require these at runtime; they are kept for compatibility and documentation.
• scripts/: Installation helpers for different platforms.
  • install.sh installs on Linux/macOS by downloading the latest release if available, or building from source.
  • install.ps1 installs on Windows similarly, adding the binary to a standard location and PATH.

• Format: make fmt
• Test: make test
• Build: make build
• Install locally: scripts/install.sh (Linux/macOS) or scripts/install.ps1 (Windows)

This project is dual-licensed under MIT or Apache-2.0.