Online Tools
Qualys SSL Labs
https://www.ssllabs.com/ssltest/
SSLtest from Qualys SSLlabs is a free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.
It provides a summary, SSL certificate details, SSL configuration details and vulnerabilities related to SSL configuration.
Offline tools
TestSSL Scan
testssl.sh is a free command line tool which checks a server’s service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. It allows saving output in different formats such as csv, JSON and HTML for parsing and analyzing results.
https://github.com/drwetter/testssl.sh
Usage Example:
Run testssl scan on hacksheets.in domain and saves the output in HTML format
#./testssl.ssh --http https://hacksheets.in/SSLScan
SSLScan queries SSL enabled target in order to determine the ciphers that are supported. SSLScan is designed to be easy, and fast. The output includes preferred ciphers of the SSL service, the certificate and is in Text and XML formats.
https://github.com/rbsec/sslscan
Usage Example:
Run sslscan against target https://hacksheets.in/
#./sslscan https://hacksheets.in/SSLyze
SSLyze is a fast and powerful SSL/TLS scanning library.
It allows you to analyze the SSL/TLS configuration of a server by connecting to it, in order to detect various issues (bad certificate, weak cipher suites, Heartbleed, ROBOT, TLS 1.3 support, etc.).
https://github.com/nabla-c0d3/sslyze
Usage example:
python -m sslyze hacksheets.in