Threat Level: green Handler on Duty: Renato Marinho

SANS ISC: Using SANS ISC InfoSec Forums

Special Webcast: What you need to know about the crypt32.dll vulnerability. Register Now

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Testssl project has announced the release of testssl 2.6. is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws.


Here is some examples of how to use

First you have to download the script from:

Running the script without any option will run all the tests:

If you like to check for a specific vulnerability such as heartbleed you can run the following option -B

To check the supported ciphers suites you can use the –f option:

./ –f

Another neat option is –H which will give you some information about the http header and it will mark the security features

./ –H



60 Posts
ISC Handler
There's also Qualsys ssl check (

Sign Up for Free or Log In to start participating in the conversation!