{"id":23940219,"url":"https://github.com/ecobee/tlsscan","last_synced_at":"2026-06-09T21:31:24.568Z","repository":{"id":42618758,"uuid":"158437134","full_name":"ecobee/tlsscan","owner":"ecobee","description":"Scans the TLS options set on a particular socket","archived":false,"fork":false,"pushed_at":"2022-03-30T21:10:00.000Z","size":17,"stargazers_count":2,"open_issues_count":2,"forks_count":0,"subscribers_count":5,"default_branch":"master","last_synced_at":"2025-02-24T04:20:04.286Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/ecobee.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-11-20T18:56:06.000Z","updated_at":"2022-02-08T03:33:14.000Z","dependencies_parsed_at":"2022-09-15T05:22:28.761Z","dependency_job_id":null,"html_url":"https://github.com/ecobee/tlsscan","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/ecobee/tlsscan","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecobee%2Ftlsscan","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecobee%2Ftlsscan/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecobee%2Ftlsscan/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecobee%2Ftlsscan/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ecobee","download_url":"https://codeload.github.com/ecobee/tlsscan/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ecobee%2Ftlsscan/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34127343,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-09T02:00:06.510Z","response_time":63,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-01-06T03:12:56.806Z","updated_at":"2026-06-09T21:31:24.041Z","avatar_url":"https://github.com/ecobee.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# tlsscan\n\ntlsscan scans the tls configuration of any TLS enabled protocol (https, smtps, imaps, etc).  Tools like ssllabs are more feature rich, however they are run by external third parties and so we cannot scan internal systems, there may be rating limiting, etc.\n\n## Building\n\nIt's all go, with no exotic extras, so it should just be `go build` in the directory.\n\nThere's no configaration files to worry about right now, it's all either compiled in or commandline switches\n\n## Running\n\nYou can run tlsscan, and specify options on the commandline:\n\n`./tlsscan --host api.ecobee.com:443`\n\nOutput is in JSON format to make it easily parsable by other tools, you can use `jq` to beautify it a little:\n\n```\n$ ./tlsscan --host api.ecobee.com:443 | jq '.'\n{\n  \"ciphersuites\": [\n    \"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384\",\n    \"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256\",\n    \"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384\",\n    \"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256\",\n    \"TLS_RSA_WITH_AES_256_GCM_SHA384\",\n    \"TLS_RSA_WITH_AES_256_CBC_SHA256\"\n  ],\n  \"tlsversion\": [\n    \"TLSv1_2\"\n  ]\n}\n```\n\n### Lambda\n\nThis code can (sort of) be run in a lambda, following the instructions here:\n\nhttps://docs.aws.amazon.com/lambda/latest/dg/lambda-go-how-to-create-deployment-package.html\n\nInput is as follows:\n\n```\n{\n  connnectString: \"api.ecobee.com:443\"\n}\n\n```\n\nTLSScan *should* detect if it's being run on the commandline or in lambda automatically\n\n\n\n## Bugs 🐜\n\n~~Go currently filters out ciphersuites which it does not support, and so it does not check the full list.~~ \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fecobee%2Ftlsscan","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fecobee%2Ftlsscan","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fecobee%2Ftlsscan/lists"}