LSE toolsLSE toolscipherscan (230)cipherscan (230)

Tool and Usage

Cipherscan is a tool to test the ordering of SSL/TLS ciphers on a given target. It tests the major versions of SSL, TLS, and any extensions of these protocols.

Screenshot for cipherscan tool review

Why this tool?

The tool is of great assistance to quickly perform a security audit and may be used during penetrating testing, or guiding system administrator for system hardening.

How it works

Cipherscan is a wrapper around the OpenSSL s_client command line utility. Therefore it requires preferably one of the later OpenSSL versions, to properly test the capabilities of a target.

Usage and audience

This tool is categorized as a cipher scan tool and SSL/TLS scanner.

cipherscan is commonly used for information gathering, security assessment, system hardening, or web application analysis. Target users for this tool are auditors, pentesters, security professionals, and system administrators.


  • cipherscan is written in Python, shell script
  • Can run non-privileged (as normal user)
  • Command line interface
  • Installation of tool is optional
  • JSON output supported

Tool review

The review and analysis of this project resulted in the following remarks for this security tool:


  • + Screen output is colored
  • + More than 1000 GitHub stars
  • + Very low number of dependencies
  • + Supported by a large company

Author and Maintainers

Cipherscan is under development by Julien Vehent and maintained by Mozilla Foundation. This project is currently maintained by Hubert Kario.


Support operating systems

Cipherscan is known to work on Linux.

This tool page was recently updated. Found an improvement? Become an influencer and submit an update.
Project details
Latest releaseNo release found
License(s)MPL 2.0
Last updatedSept. 17, 2017

Project health

This score is calculated by different factors, like project age, last release date, etc.


GitHub iconCipherScan GitHub project

Related terms