https://github.com/bramp/ssltester
Tests how well a SSL service is set up, and alerts if it's below required threshold
https://github.com/bramp/ssltester
Last synced: over 1 year ago
JSON representation
Tests how well a SSL service is set up, and alerts if it's below required threshold
- Host: GitHub
- URL: https://github.com/bramp/ssltester
- Owner: bramp
- License: bsd-2-clause
- Created: 2014-10-05T00:40:37.000Z (almost 12 years ago)
- Default Branch: master
- Last Pushed: 2014-10-05T00:41:59.000Z (almost 12 years ago)
- Last Synced: 2025-03-25T18:51:10.719Z (over 1 year ago)
- Language: Go
- Size: 125 KB
- Stars: 2
- Watchers: 2
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
SSL Tester
----------
by Andrew Brampton (bramp.net) (c) 2014
Intro
=====
*This is still a work in progress*
SSL Tester is a command line tool for checking if your servers adhere to your SSL policies. Given a list of IP address
and a config it will check various criteria on each server, such as:
* Minimum level of SSL protocol, e.g TLS 1.0 or higher
* Minimum strength algorithms and key size
* Certificates correctly issued, and chains provided
* Check for visibilities (Heartbleed for example)
Notes
=====
https://www.ssllabs.com/downloads/SSL_TLS_Deployment_Best_Practices_1.3.pdf
https://www.openssl.org/docs/ssl/SSL_get_peer_certificate.html#
https://www.openssl.org/docs/ssl/SSL_get_peer_cert_chain.html#
SSL_set_tlsext_host_name SNI