Tools compared: SSL/TLS scanners
Finding the right tool can be difficult. This sheet compares SSLyze, tlsenum, tls-fingerprinting and tls-prober.
SSLyze provides a library for scanning services that use SSL/TLS for encrypted communications. It can be used to test their implementation.
The CLI tool tlsenum attempts to enumerate what TLS cipher suites a server supports and then list them in order of priority.
This tool works by sending out sending out TLS ClientHello messages. Any ServerHello responses from the server are parsed. It assumes that the server is the one which decides the preferred cipher suite, giving an idea on the available ciphers.
|Strenghts||The source code of this software is available|
|Weaknesses||More than 25 contributors, More than 1000 GitHub stars, The source code of this software is available|
|Tool page (last updated)|
|Download||Download||Download||No link available||No link available|
|More information||SSLyze review||tlsenum review||tls-fingerprinting review||tls-prober review|