Testssl project has announced the release of testssl 2.6. testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws.
Here is some examples of how to use testssl.sh: First you have to download the script from: Running the script without any option will run all the tests: testssl.sh google.com If you like to check for a specific vulnerability such as heartbleed you can run the following option To check the supported ciphers suites you can use the –f option: ./testssl.sh –f Microsoft.com
Another neat option is –H which will give you some information about the http header and it will mark the security features ./testssl.sh –H isc.sans.edu
|
Basil 60 Posts ISC Handler Sep 20th 2015 |
Thread locked Subscribe |
Sep 20th 2015 6 years ago |
There's also Qualsys ssl check (https://www.ssllabs.com/ssltest/)
|
Anonymous |
Quote |
Sep 21st 2015 6 years ago |
Sign Up for Free or Log In to start participating in the conversation!