Fix: Do not assume testssl runs as 'testssl.sh'.

#27

Author: rfc-st

README.md

@@ -6,7 +6,7 @@
 <a target="_blank" href="https://devguide.python.org/versions/" title="Minimum Python version required to run this tool"><img src="https://img.shields.io/badge/Python-%3E%3D3.9-blue?labelColor=343b41"></a>
 <a target="_blank" href="LICENSE" title="License of this tool"><img src="https://img.shields.io/badge/License-MIT-blue.svg?labelColor=343b41"></a>
 <a target="_blank" href="https://github.com/rfc-st/humble/releases" title="Latest release of this tool"><img src="https://img.shields.io/github/v/release/rfc-st/humble?display_name=release&label=Latest%20Release&labelColor=343b41"></a>
-<a target="_blank" href="https://github.com/rfc-st/humble/commits/master" title="Latest commit of this tool"><img src="https://img.shields.io/badge/Latest_Commit-2025--03--22-blue.svg?labelColor=343b41"></a>
+<a target="_blank" href="https://github.com/rfc-st/humble/commits/master" title="Latest commit of this tool"><img src="https://img.shields.io/badge/Latest_Commit-2025--03--28-blue.svg?labelColor=343b41"></a>
 <a target="_blank" href="https://pkg.kali.org/pkg/humble" title="Official tool in Kali Linux"><img src="https://img.shields.io/badge/Kali%20Linux-Tool-blue?labelColor=343b41"></a>
 <br />
 <a target="_blank" href="#" title="Featured on:"><img src="https://img.shields.io/badge/Featured%20on:-343b41"></a>
@@ -305,15 +305,15 @@ $ sudo apt install --only-upgrade humble
 usage: humble.py [-h] [-a] [-b] [-c] [-df] [-e [TESTSSL_PATH]] [-f [FINGERPRINT_TERM]] [-g] [-grd] [-if INPUT_FILE] [-l {es}] [-lic] [-o {csv,html,json,pdf,txt,xml}]
                  [-of OUTPUT_FILE] [-op OUTPUT_PATH] [-r] [-s [SKIP_HEADERS ...]] [-u URL] [-ua USER_AGENT] [-v]
 
-'humble' (HTTP Headers Analyzer) | https://github.com/rfc-st/humble | v.2025-01-10
+'humble' (HTTP Headers Analyzer) | https://github.com/rfc-st/humble | v.2025-03-28
 
 options:
   -h, --help                      show this help message and exit
   -a                              Shows statistics of the performed analysis; if the '-u' parameter is ommited they will be global
   -b                              Shows overall findings; if omitted detailed ones will be shown
   -c                              Checks URL response HTTP headers for compliance with OWASP 'Secure Headers Project' best practices
   -df                             Do not follow redirects; if omitted the last redirection will be the one analyzed
-  -e [TESTSSL_PATH]               Shows TLS/SSL checks; requires the PATH of https://testssl.sh/
+  -e [TESTSSL_PATH]               Shows only TLS/SSL checks; requires the PATH of testssl (https://testssl.sh/)
   -f [FINGERPRINT_TERM]           Shows fingerprint statistics; if 'FINGERPRINT_TERM' (e.g., 'Google') is omitted the top 20 results will be shown
   -g                              Shows guidelines for enabling security HTTP response headers on popular frameworks, servers and services
   -grd                            Shows the checks to grade an analysis, along with advice for improvement

humble.py

@@ -99,13 +99,13 @@
 HUMBLE_FILES = ('analysis_h.txt', 'check_path_permissions', 'fingerprint.txt',
                 'guides.txt', 'details_es.txt', 'details.txt',
                 'user_agents.txt', 'insecure.txt', 'html_template.html',
-                'testssl.sh', 'analysis_grades.txt', 'analysis_grades_es.txt',
-                'license.txt', 'license_es.txt', 'testssl_windows.txt',
+                'analysis_grades.txt', 'analysis_grades_es.txt', 'license.txt',
+                'license_es.txt', 'testssl_windows.txt',
                 'testssl_windows_es.txt', 'security_guides.txt',
                 'security_guides_es.txt', 'security.txt')
 JSON_SECTION = ('0section', '0headers', '5compat', '6result')
-L10N_IDXS = {'grades': (10, 11), 'license': (12, 13), 'testssl': (14, 15),
-             'security_guides': (16, 17)}
+L10N_IDXS = {'grades': (9, 10), 'license': (11, 12), 'testssl': (13, 14),
+             'security_guides': (15, 16)}
 OS_PATH = dirname(abspath(__file__))
 PDF_CONDITIONS = ('Ref:', ':', '"', '(*) ')
 RE_PATTERN = (
@@ -139,6 +139,7 @@
 STYLE = (Style.BRIGHT, f"{Style.BRIGHT}{Fore.RED}", Fore.CYAN, Style.NORMAL,
          Style.RESET_ALL, Fore.RESET, '(humble_pdf_style)',
          f"(humble_sec_style){Fore.GREEN}", '(humble_sec_style)')
+TESTSSL_FILE = ("testssl", "testssl.sh")
 # Check https://testssl.sh/doc/testssl.1.html to choose your preferred options
 TESTSSL_OPTIONS = ['-f', '-g', '-p', '-U', '-s', '--hints']
 URL_LIST = (': https://caniuse.com/?search=', ' Ref  : https://developers.clou\
@@ -150,7 +151,7 @@
 XML_STRING = ('Ref: ', 'Value: ', 'Valor: ')
 
 current_time = datetime.now().strftime("%Y/%m/%d - %H:%M:%S")
-local_version = datetime.strptime('2025-03-22', '%Y-%m-%d').date()
+local_version = datetime.strptime('2025-03-28', '%Y-%m-%d').date()
 
 
 class SSLContextAdapter(requests.adapters.HTTPAdapter):
@@ -286,12 +287,14 @@ def print_l10n_file(args, l10n_file, slice_ln=False):
 def testssl_command(testssl_temp_path, uri):
     if not path.isdir(testssl_temp_path):
         print_error_detail('[notestssl_path]')
-    testssl_final_path = path.join(testssl_temp_path, HUMBLE_FILES[9])
-    if not path.isfile(testssl_final_path):
+    testssl_path = next((path.join(testssl_temp_path, filename) for filename
+                         in TESTSSL_FILE if
+                         path.isfile(path.join(testssl_temp_path, filename))),
+                        None)
+    if not testssl_path:
         print_error_detail('[notestssl_file]')
-    else:
-        testssl_command = [testssl_final_path] + TESTSSL_OPTIONS + [uri]
-        testssl_analysis(testssl_command)
+    testssl_command = [testssl_path] + TESTSSL_OPTIONS + [uri]
+    testssl_analysis(testssl_command)
     sys.exit()
 
 
@@ -1878,7 +1881,7 @@ def custom_help_formatter(prog):
 parser.add_argument("-df", dest='redirects', action="store_true", help="Do not\
  follow redirects; if omitted the last redirection will be the one analyzed")
 parser.add_argument("-e", nargs='?', type=str, dest='testssl_path', help="Show\
-s TLS/SSL checks; requires the PATH of https://testssl.sh/")
+s only TLS/SSL checks; requires the PATH of testssl (https://testssl.sh/)")
 parser.add_argument("-f", nargs='?', type=str, dest='fingerprint_term', help="\
 Shows fingerprint statistics; if 'FINGERPRINT_TERM' (e.g., 'Google') is \
 omitted the top 20 results will be shown")
@@ -2061,7 +2064,7 @@ def custom_help_formatter(prog):
 # Checks: /additional/security.txt
 print_detail_r('[1enabled]')
 
-with open(path.join(OS_PATH, HUMBLE_DIRS[0], HUMBLE_FILES[18]), 'r',
+with open(path.join(OS_PATH, HUMBLE_DIRS[0], HUMBLE_FILES[17]), 'r',
           encoding='utf8') as sec_f:
     t_ena = tuple(line.strip() for line in islice(sec_f, SLICE_INT[2], None))
 

l10n/details.txt

@@ -1605,7 +1605,7 @@ Your version   :
 Error: That User-Agent ID does not exist; check the available ones with '-ua 0'
 
 [args_notestssl]
-Error: The '-e' parameter requires the path of 'testssl.sh' and the parameter '-u'.
+Error: The '-e' parameter requires the path of 'testssl' and the parameter '-u'.
 
 [args_inputfile]
 Error: The '-if' parameter does not requires the parameters '-df', '-r' or -'ua'.
@@ -1638,10 +1638,10 @@ Error: The parameter '-of' requires the parameters '-u' and '-o'.
 Error: The parameter '-o json' requires the parameter '-b'.
 
 [notestssl_file]
-Error: 'testssl.sh' is not found in that PATH.
+Error: 'testssl' is not found in that PATH.
 
 [notestssl_path]
-Error: The PATH for 'testssl.sh' is incorrect.
+Error: The PATH for 'testssl' is incorrect.
 
 [args_nooutputfmt]
 Error: The parameter '-op' requires the parameter '-o'.

l10n/details_es.txt

@@ -1610,7 +1610,7 @@ Tu versión     :
 Error: No existe ese ID de User-Agent; consulta los disponibles con '-ua 0'
 
 [args_notestssl]
-Error: El parámetro '-e' requiere la ruta de 'testssl.sh' y el parámetro '-u'.
+Error: El parámetro '-e' requiere la ruta de 'testssl' y el parámetro '-u'.
 
 [args_inputfile]
 Error: El parámetro '-if' no requiere los parámetros '-df', '-r' o -'ua'.
@@ -1643,10 +1643,10 @@ Error: El parámetro -of' requiere los parámetros '-u' y '-o'.
 Error: El parámetro '-o json' requiere el parámetro '-b'.
 
 [notestssl_file]
-Error: 'testssl.sh' no existe en la ruta indicada.
+Error: 'testssl' no existe en la ruta indicada.
 
 [notestssl_path]
-Error: la ruta indicada de 'testssl.sh' es incorrecta.
+Error: la ruta indicada de 'testssl' es incorrecta.
 
 [args_skipped]
 Error: El parámetro '-s' requiere, al menos, el nombre de una cabecera HTTP de respuesta.

l10n/testssl_windows.txt

@@ -23,7 +23,7 @@
 # OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
 # SOFTWARE.
 
-To run an SSL/TLS scan on Windows with 'testssl.sh' you have three options:
+To run an SSL/TLS scan on Windows with 'testssl' you have three options:
 
 [Option: Cygwin]
 

l10n/testssl_windows_es.txt

@@ -24,7 +24,7 @@
 # AGRAVIO O CUALQUIER OTRO MOTIVO, DERIVADAS DE, FUERA DE O EN CONEXIÓN CON EL
 # SOFTWARE O SU USO U OTRO TIPO DE ACCIONES EN EL SOFTWARE.
 
-Para ejecutar un análisis SSL/TLS en Windows con 'testssl.sh' tienes tres opciones:
+Para ejecutar un análisis SSL/TLS en Windows con 'testssl' tienes tres opciones:
 
 [Opción: Cygwin]