testssl.sh

LSE toolsLSE toolstestssl.sh (149)testssl.sh (149)

Tool and Usage

testssl.sh is a command line tool which checks a system on any port for the support of TLS/SSL ciphers, protocols, as well as some cryptographic flaws.

Screenshot for testssl.sh tool review

Introduction

Key features of testssl.sh include:

  • Clear output: you can tell easily whether anything is good or bad
  • Ease of installation: It works for Linux, Darwin, FreeBSD, NetBSD and MSYS2/Cygwin out of the box: no need to install or configure something, no gems, CPAN, pip or the like.
  • Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only webservers at port 443
  • Toolbox: Several command line options help you to run YOUR test and configure YOUR output
  • Reliability: features are tested thoroughly
  • Verbosity: If a particular check cannot be performed because of a missing capability on your client side, you'll get a warning
  • Privacy: It's only you who sees the result, not a third party
  • Freedom: It's 100% open source. You can look at the code, see what's going on and you can change it.

Usage and audience

This tool is categorized as a configuration audit tool and SSL/TLS scanner.

testssl.sh is commonly used for application testing or configuration audit.

Tool review

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + Used language is shell script
  • + The source code of this software is available

Author and Maintainers

Testssl.sh is under development by Dirk Wetter.

This tool page was recently updated. Found an improvement? Become an influencer and submit an update.
Project details
Latest release 2.8 [2017-05-10]
Last updatedNov. 6, 2017

Project health

68
This score is calculated by different factors, like project age, last release date, etc.

Links

GitHub icontestssl.sh GitHub project

Related terms