ackreport is a simple tool to test TCP and TLS network and socket behavior. It is meant to be a more civilized "telnet test".
ackreport takes a list of destinations: hostnames and :ports.
Arguments starting with : are interpreted as port numbers.
For hostnames that return multiple IP addresses, all addresses will be checked.
exec: cargo run --release -- --help
$ ackreport slashdot.org freshmeat.net :25 :80 :443
exec: cargo run --release -- slashdot.org freshmeat.net :25 :80 :443
ackreport can attempt to negotiate a TLS connection. Here's some badssl examples to demonstrate the output format. Note that the results may differ from web browsers or security best practices.
$ ackreport --tls badssl.com :80 badssl.com :99 no-common-name.badssl.com wrong.host.badssl.com self-signed.badssl.com revoked.badssl.com 1000-sans.badssl.com ecc384.badssl.com rsa8192.badssl.com mitm-software.badssl.com :443
exec: cargo run --release -- --tls badssl.com :80 badssl.com :99 no-common-name.badssl.com wrong.host.badssl.com self-signed.badssl.com revoked.badssl.com 1000-sans.badssl.com ecc384.badssl.com rsa8192.badssl.com mitm-software.badssl.com :443
The --tls option uses OS certificate roots.
Using --tls-moz instead will use the mozilla certificate bundle statically compiled into the binary.
The rustls-native-certs README has some Pros and Cons of each.
rustup and cargo build --release or download from github releases page.
Copy the binary to your path.