I recently had to perform a quick enumeration of cipher suites supported by a certain
server. Like the good man that I am, I immediately wrote a script to automate it in case I
need it in the future. Maybe you’ll find it useful as well.
It’s hastily written and quite hacky in at least three points:
It requires OpenSSL to be installed and in your $PATH
It does not support -stdname, which is very useful to make sense of the results
quickly. Note that the -stdname option is conditionally compiled in OpenSSL, so I
didn’t want to put effort into detection etc.
No effort has been made to group / distinguish results by protocol version, so the
output is quite dense