testssl.sh

LSE top 100LSE top 100testssl.sh (40)testssl.sh (40)

Tool and Usage

Project details

License
GPLv2
Programming language
shell script
Author
Dirk Wetter
Latest release
3.0.5
Latest release date

Project health

97
This score is calculated by different factors, like project age, last release date, etc.

Introduction

Key features of testssl.sh include:

  • Clear output: you can tell easily whether anything is good or bad
  • Ease of installation: It works for Linux, Darwin, FreeBSD, NetBSD and MSYS2/Cygwin out of the box: no need to install or configure something, no gems, CPAN, pip or the like.
  • Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only webservers at port 443
  • Toolbox: Several command line options help you to run YOUR test and configure YOUR output
  • Reliability: features are tested thoroughly
  • Verbosity: If a particular check cannot be performed because of a missing capability on your client side, you'll get a warning
  • Privacy: It's only you who sees the result, not a third party
  • Freedom: It's 100% open source. You can look at the code, see what's going on and you can change it.

Usage and audience

testssl.sh is commonly used for application testing or configuration audit.

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + Used language is shell script
  • + The source code of this software is available

Author and Maintainers

Testssl.sh is under development by Dirk Wetter.

testssl.sh alternatives

Similar tools to testssl.sh:

64

cipherscan

Cipherscan is a tool to test the ordering of SSL/TLS ciphers on a given target. It tests the major versions of SSL, TLS, and any extensions of these protocols.

60

sslcaudit

The sslcaudit project helps with automated testing of SSL/TLS clients for resistance against MITM attacks.

64

A2SV

A2SV is short for Auto Scanning to SSL Vulnerability, a security tool to scan for SSL and TLS vulnerabilities. It can be used during security assessments.

All testssl.sh alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.

Related tool information

Categories

This tool is categorized as a SSL/TLS scanner and configuration audit tool.