Wednesday, April 30, 2025
HomeSSL/TLStestssl.sh - Tool to check cryptographic flaws and TLS/SSL Ciphers on any...

testssl.sh – Tool to check cryptographic flaws and TLS/SSL Ciphers on any Ports

Published on

SIEM as a Service

Follow Us on Google News

testssl.sh is a free command line tool which checks a server’s administration on any port for the help of TLS/SSL ciphers, protocols and some TLS/SSL vulnerabilities.

Key features

1. Easy to install.
2. You can check with all port not only with 443.
3. Warnings if there is an issue with tests performed.
4. Compatible with Linux/BSD distribution
5. Supports more TLS extensions via sockets
6. TLS 1.3 support
7. Check for CAA RR
8. Check for OCSP must staple
9. Check for Certificate Transparency
10.Expect-CT Header Detection

How to use testssl.sh- TLS/SSL vulnerabilities

In this Kali Linux Tutorial we show how to work with testssl.sh and find all the cryptographic vulnerabilities. To download the tool.

- Advertisement - Google News

To install testssl.sh

git clone –depth 1 https://github.com/drwetter/testssl.sh.git

To run the tool

root@kali:~/testssl.sh# ./testssl.sh

testssl.sh

To check for Heartbleed

root@kali:~/testssl.sh# ./testssl.sh -H testdomain.com

testssl.sh

Also Read Fast and Complete SSL Scanner to Find Mis-configurations affecting TLS/SSL

To check for POODLE

root@kali:~/testssl.sh# ./testssl.sh -O testdomain.com

testssl.sh

To perform a complete check

root@kali:~/testssl.sh# ./testssl.sh testdomain.com

testssl.sh
testssl.sh
testssl.sh
testssl.sh
testssl.sh
testssl.sh
testssl.sh

To perform check with smtp

root@kali:~/testssl.sh# ./testssl.sh -t smtp testdomain.com

testssl.sh

To see prefered SSL/TLS protocols

root@kali:~/testssl.sh# ./testssl.sh -P testdomain.com

testssl.sh

To test the vulnerabilities

root@kali:~/testssl.sh# ./testssl.sh -U –sneaky testdomain.com

testssl.sh

Developed By: drwetter

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Trellix Launches Phishing Simulator to Help Organizations Detect and Prevent Attacks

Trellix, a leader in cybersecurity solutions, has unveiled its latest innovation, the Trellix Phishing...

AiTM Phishing Kits Bypass MFA by Hijacking Credentials and Session Tokens

Darktrace's Security Operations Center (SOC) in late 2024 and early 2025, cybercriminals have been...

Nitrogen Ransomware Uses Cobalt Strike and Log Wiping in Targeted Attacks on Organizations

Threat actors have leveraged the Nitrogen ransomware campaign to target organizations through deceptive malvertising...

Researchers Reveal Threat Actor TTP Patterns and DNS Abuse in Investment Scams

Cybersecurity researchers have uncovered the intricate tactics, techniques, and procedures (TTPs) employed by threat...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Fake Certificate Issued for Alibaba Cloud After SSL.com Validation Trick

A critical vulnerability in SSL.com’s domain validation process allowed unauthorized parties to fraudulently obtain...

10 Best Free SSL Checker Tools 2024

SSL Checker helps you troubleshoot common SSL issues and SSL endpoint vulnerabilities. With the...

Google to Reduce SSL Certificate Lifespan to 90 Days

Recently, Google declared its plan to reduce the maximum validity for public TLS (SSL)...