This repository has been archived by the owner on Dec 16, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 15
Objects xpcshell_worker.Response scan command
Christiane Ruetten edited this page Jul 7, 2017
·
3 revisions
This is an sample of a scan result returned by an xpcshell worker that includes DER certificate data. The raw DER bytes of the certificate chain have been stripped for brevity.
There is some natural variation to deeper data structures that originate in XPCShell. There is also significant variation especially in the the ssl_status and other connection info keys depending on the server's SSL connection state.
{
"host": "outlook.com",
"rank": 138,
"response": {
"command_time": 1499422585047,
"id": 8701021541902645000,
"original_cmd": {
"args": {
"host": "outlook.com",
"include_certificates": true,
"rank": 138,
"timeout": 10
},
"id": null,
"mode": "scan"
},
"response_time": 1499422586076,
"result": {
"info": {
"certificate_chain": [
[48, 130, 6, 230, "DER data bytes..."],
[48, 130, 6, 230, "DER data bytes..."]
],
"certificate_chain_length": 2,
"certified_usages": null,
"error_class": null,
"original_uri": "https://outlook.com/",
"raw_error": "",
"security_info_status": true,
"security_state": 262146,
"ssl_status": {
"CERTIFICATE_TRANSPARENCY_NOT_APPLICABLE": 0,
"CERTIFICATE_TRANSPARENCY_POLICY_COMPLIANT": 5,
"CERTIFICATE_TRANSPARENCY_POLICY_NOT_DIVERSE_SCTS": 7,
"CERTIFICATE_TRANSPARENCY_POLICY_NOT_ENOUGH_SCTS": 6,
"SSL_VERSION_3": 0,
"TLS_VERSION_1": 1,
"TLS_VERSION_1_1": 2,
"TLS_VERSION_1_2": 3,
"TLS_VERSION_1_3": 4,
"certificateTransparencyStatus": 0,
"cipherName": "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
"isDomainMismatch": false,
"isExtendedValidation": false,
"isNotValidAtThisTime": false,
"isUntrusted": false,
"keyLength": 128,
"protocolVersion": 3,
"secretKeyLength": 128,
"serverCert": {
"ANY_CERT": 65535,
"ASN1Structure": {
"ASN1_APPLICATION": 33,
"ASN1_BIT_STRING": 3,
"ASN1_BMP_STRING": 30,
"ASN1_BOOLEAN": 1,
"ASN1_CONTEXT_SPECIFIC": 32,
"ASN1_END_CONTENTS": 0,
"ASN1_ENUMERATED": 10,
"ASN1_GEN_TIME": 24,
"ASN1_HIGH_TAG_NUMBER": 31,
"ASN1_IA5_STRING": 22,
"ASN1_INTEGER": 2,
"ASN1_NULL": 5,
"ASN1_OBJECT_ID": 6,
"ASN1_OCTET_STRING": 4,
"ASN1_PRINTABLE_STRING": 19,
"ASN1_PRIVATE": 34,
"ASN1_SEQUENCE": 16,
"ASN1_SET": 17,
"ASN1_T61_STRING": 20,
"ASN1_UNIVERSAL_STRING": 28,
"ASN1_UTC_TIME": 23,
"ASN1_UTF8_STRING": 12,
"ASN1_VISIBLE_STRING": 26,
"displayName": "outlook.com",
"displayValue": "",
"tag": 0,
"type": 0
},
"CA_CERT": 1,
"CMS_CHAIN_MODE_CertChain": 2,
"CMS_CHAIN_MODE_CertChainWithRoot": 3,
"CMS_CHAIN_MODE_CertOnly": 1,
"EMAIL_CERT": 4,
"SERVER_CERT": 8,
"UNKNOWN_CERT": 0,
"USER_CERT": 2,
"certType": 0,
"commonName": "outlook.com",
"dbKey": "AAAAAAAAAAAAAAAQAAAATQhJNUEJdeQT6/B0u3QM6UIwSzELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzElMCMGA1UEAxMcRGlnaUNlcnQgQ2xvdWQgU2VydmljZXMgQ0EtMQ==",
"displayName": "outlook.com",
"emailAddress": "(no email address)",
"isBuiltInRoot": false,
"isSelfSigned": false,
"issuer": null,
"issuerCommonName": "DigiCert Cloud Services CA-1",
"issuerName": "CN=DigiCert Cloud Services CA-1,O=DigiCert Inc,C=US",
"issuerOrganization": "DigiCert Inc",
"issuerOrganizationUnit": "",
"keyUsages": "Signing,Key Encipherment",
"organization": "Microsoft Corporation",
"organizationalUnit": "",
"serialNumber": "08:49:35:41:09:75:E4:13:EB:F0:74:BB:74:0C:E9:42",
"sha1Fingerprint": "69:1A:C3:44:96:25:2F:00:DD:4B:E7:2F:97:AE:4A:8E:48:DF:6B:F5",
"sha256Fingerprint": "62:DF:53:CE:C2:5A:40:D4:E4:D7:C8:56:8C:C4:0D:45:33:36:B2:7E:4E:0D:4F:D2:EC:42:09:72:22:0F:12:06",
"sha256SubjectPublicKeyInfoDigest": "fJszJSOvKYW9tXnhjJmoqgJK0TxtDVYHgpLJVaf1A9I=",
"subjectName": "CN=outlook.com,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US",
"tokenName": "Software Security Device",
"validity": {
"notAfter": 1522756800000000,
"notAfterGMT": "3 April 2018, 12:00:00 GMT",
"notAfterLocalDay": "3 April 2018",
"notAfterLocalTime": "3 April 2018, 14:00:00 GMT+2",
"notBefore": 1491177600000000,
"notBeforeGMT": "3 April 2017, 00:00:00 GMT",
"notBeforeLocalDay": "3 April 2017",
"notBeforeLocalTime": "3 April 2017, 02:00:00 GMT+2"
}
}
},
"ssl_status_errors": [],
"ssl_status_status": true,
"status": 0,
"transport_security_info_status": true,
"uri": "https://outlook.com/"
},
"origin": "error_handler"
},
"success": false,
"worker_id": 15634279826047433000
},
"success": true
}