Jump to content
Nytro

testssl.sh: Testing TLS/SSL encryption

By Nytro, in Programe securitate

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

testssl.sh: Testing TLS/SSL encryption

Name Last Modified Size Type
legacy-2.6/ 2016-Nov-13 12:37:56 -- Directory
openssl-1.0.2i-chacha.pm.ipv6.contributed/ 2016-Sep-26 23:15:22 -- Directory
 
CHANGELOG.txt 2015-Sep-15 10:56:45 12.27KB TXT Type Document
LICENSE.txt 2014-May-03 11:04:22 17.59KB TXT Type Document
OPENSSL-LICENSE.txt 2015-Oct-13 00:12:23 58.08KB TXT Type Document
bash-heartbleed.changelog.txt 2014-May-03 17:37:15 572.00B TXT Type Document
bash-heartbleed.sh 2015-Oct-27 15:11:18 3.98KB SH File
ccs-injection.sh 2014-Jun-14 23:44:42 3.94KB SH File
mapping-rfc.txt 2014-Dec-21 00:52:13 15.88KB TXT Type Document
openssl-1.0.2e-chacha.pm.tar.gz 2015-Sep-15 09:23:07 11.65MB GZ Compressed Archive
openssl-1.0.2e-chacha.pm.tar.gz.asc 2015-Sep-16 01:17:54 828.00B ASC File
openssl-1.0.2i-chacha.pm.ipv6.Linux+FreeBSD.tar.gz 2016-Jun-23 11:34:57 9.45MB GZ Compressed Archive
openssl-1.0.2i-chacha.pm.ipv6.Linux+FreeBSD.tar.gz.asc 2016-Jun-23 11:33:36 811.00B ASC File
openssl-ms14-066.Linux.x86_64 2016-Apr-15 12:36:23 4.24MB X86_64 File
openssl-rfc.mappping.html 2016-Feb-06 16:19:09 57.88KB HTML File
testssl.sh 2016-Nov-20 19:26:02 427.82KB SH File


testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more. 

Standard call: testssl.sh <hostname>

 

Version 2.8 is being finalized. 2.6 is outdated, has more bugs and less features. Please checkout 2.8rc3 @ github or download the stable 2.8rc3 version from here

Key features

  • Clear output: you can tell easily whether anything is good or bad
  • Ease of installation: It works for Linux, Darwin, FreeBSD and MSYS2/Cygwin out of the box: no need to install or configure something, no gems, CPAN, pip or the like.
  • Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only webservers at port 443
  • Toolbox: Several command line options help you to run YOUR test and configure YOUR output
  • Reliability: features are tested thoroughly
  • Verbosity: If a particular check cannot be performed because of a missing capability on your client side, you'll get a warning
  • Privacy: It's only you who sees the result, not a third party
  • Freedom: It's 100% open source. You can look at the code, see what's going on and you can change it. Heck, even the development is open (github)

 

Link: https://testssl.sh/

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...