SSL Eye

Posted by Warith Al Maawali on Aug 1, 2013 in Home Office | 30 comments

SSL Eye is a unique tool that is designed in a way it can detect man in the middle spying, by comparing of single or multiple sites across many remote nodes that are owned and managed by EEDS located in different countries such as Singapore, USA, UK, Germany and Netherlands. This is done by comparing the other nodes finger prints results with yours that comes through your local ISP. Additionally the tool will tell you if the site is using Extended Validation () certificates or perfect forward secrecy through the key exchange mechanism such as DHE_RSA or ECDHE_RSA which is currently being used by Google Inc. We have also implemented global short-cut keys on the application that allows you to copy a site from the browser address bar and call it for instant scan to check if you are a victim of Man in The Middle Attack (). Where normally attackers listen to your communication channel in a public key exchange re-sends the keys on your behalf, substituting his own fake keys for the requested one, so that the two original parties (you and your bank) will still appear to be communicating with each other. (view screenshots 1 – 2 – 3).

SSL Eye offers:

Retrieve fingerprint of any given domain from single or multiple sites with support.

Check if the site is using Validation (EV) certificates.

Check if the site is implementing forward secrecy on key exchange.

Export results into HTML report.

Sound alerts for invalid certificates.

Scan with global keys from clipboard without user interaction.

scan multiple domains simultaneously.











Product Name: SSL Eye

PC World Rating: (4.9/5)

User Rating: (5/5)

Usage: Freeware

Version: 1.6

Size: 5.33 MB

Updated on: 8.11.2014

Platform: Microsoft Windows





SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.

SSL (Secure Sockets Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.

In public-key cryptography, a public key fingerprint is a short sequence of bytes used to authenticate or look up a longer public key. Fingerprints are created by applying a cryptographic hash function to a public key. Since fingerprints are shorter than the keys they refer to, they can be used to simplify certain key management tasks. In Microsoft software, “thumbprint” is used instead of “fingerprint.”

Extended Validation (EV) is a standard, rigorous way of verifying identity information and the authority of individuals who request an SSL certificate. EV was established by the CA/Browser Forum, an association of certificate authorities and web browser vendors.

The man-in-the middle attack intercepts a communication between two systems. For example, in an http transaction the target is the TCP connection between client and server. Using different techniques, the attacker splits the original TCP connection into 2 new connections, one between the client and the attacker and the other between the attacker and the server, as shown in figure 1. Once the TCP connection is intercepted, the attacker acts as a proxy, being able to read, insert and modify the data in the intercepted communication.

Server Name Indication (SNI) is an extension to the TLS computer networking protocol by which a client indicates which hostname it is attempting to connect to at the start of the handshaking process.

Extended Validation (EV) is a standard, rigorous way of verifying identity information and the authority of individuals who request an SSL certificate. EV was established by the CA/Browser Forum, an association of certificate authorities and web browser vendors.

In cryptography, forward secrecy (abbreviation: FS, also known as perfect forward secrecy or PFS) is a property of key-agreement protocols ensuring that a session key derived from a set of long-term keys cannot be compromised if one of the long-term keys is compromised in the future.

Multithreading is the ability of a program or an operating system process to manage its use by more than one user at a time and to even manage multiple requests by the same user without having to have multiple copies of the programming running in the computer.