Threat Level: green Handler on Duty: Yee Ching Tok

SANS ISC: InfoSec Handlers Diary Blog InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!


Published: 2015-09-20
Last Updated: 2015-09-20 20:06:58 UTC
by Basil Alawi S.Taher (Version: 1)
1 comment(s)

Testssl project has announced the release of testssl 2.6. is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws.


Here is some examples of how to use

First you have to download the script from:

Running the script without any option will run all the tests:

If you like to check for a specific vulnerability such as heartbleed you can run the following option -B

To check the supported ciphers suites you can use the –f option:

./ –f

Another neat option is –H which will give you some information about the http header and it will mark the security features

./ –H


1 comment(s)
Diary Archives