tls-ca-manage alternatives

Looking for an alternative tool to replace tls-ca-manage? During the review of tls-ca-manage we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. Certigo (certificate validator tool)
  2. Lemur (certificate management)
  3. sslmerge (SSL certificate chain merging)

These tools are ranked as the best alternatives to tls-ca-manage.

Alternatives (by score)

84

Certigo

Introduction

This toolkit is useful for automatic auditing certificates and retrieving information from them. It can be used for monitoring certificates. These certificates could be stored in a local file or remotely on a system. In the latter case, the tool will be able to connect to the system and retrieve the related information.

Project details

Certigo is written in Golang.

Strengths and weaknesses

  • + The source code of this software is available

    Typical usage

    • Certificate management

    Certigo review

    64

    Lemur

    Introduction

    With Lemur you can provide a central portal for developers and administrators to issue TLS certificates with predefined defaults.

    Lemur works on CPython 3.5 and uses the Flask framework. Another component it uses is cryptography to handle the creation of the certificates.

    Netflix develops on macOS and deploys on Ubuntu servers.

    Project details

    Lemur is written in Python.

    Strengths and weaknesses

    • + More than 500 GitHub stars
    • + The source code of this software is available
    • + Supported by a large company

      Typical usage

      • Certificate management

      Lemur review

      76

      sslmerge

      Introduction

      When using SSL Labs, you may have had chain anchor issues when verifying a website or web application. The sslmerge tool helps to merge the domain certificate, intermediate certificate, and root certificates.

      Project details

      sslmerge is written in shell script.

      Strengths and weaknesses

      • + Very low number of dependencies
      • + The source code of this software is available

        Typical usage

        • Certificate management

        sslmerge review

        97

        OpenSSL

        Introduction

        This popular toolkit is used by many systems. It provides options like encryption and hashing of data, integrity testing, and digital certificates and signatures. Many software applications use the toolkit to provide support for these functions. OpenSSL also has a client utility that can be used on the command line to test, decrypt and encrypt data, and create certificates.

        Project details

        OpenSSL is written in C.

        Strengths and weaknesses

        • + The source code of this software is available
        • + Well-known library
        • - Major vulnerabilities in the past

        Typical usage

        • Certificate management
        • Data encryption

        OpenSSL review

        74

        Certificate Transparency

        Introduction

        HTTPS connections use cryptographic functions to provide confidentiality and integrity. It can provide features like domain validation, end-to-end encryption, and a trust chain from certificate authorities down to the end-user. Any flaws can endanger these goals, like the impersonation of a system, man-in-the-middle (MitM) attacks, and website spoofing. This project helps to find flaws and improve the overall security of our internet.

        Project details

        64

        cipherscan

        Introduction

        The tool is of great assistance to quickly perform a security audit and may be used during penetrating testing, or guiding system administrator for system hardening.

        Project details

        cipherscan is written in Python, shell script.

        Strengths and weaknesses

        • + Screen output is colored
        • + More than 1000 GitHub stars
        • + Very low number of dependencies
        • + Supported by a large company

          Typical usage

          • Information gathering
          • Security assessment
          • System hardening
          • Web application analysis

          cipherscan review

          60

          clinker

          Introduction

          Clinker is a tool to test SSL and TLS security for Firefox. It is an addon that shows the used cipher suites, certificates, and shows related security information of the connection itself.

          Requirements: Firefox

          Project details

          Some relevant tool missing as an alternative to tls-ca-manage? Please contact us with your suggestion.