Testing the Security of SSL Encryption with Testssl.sh - This time I will share one tool that can help you to test SSL installed on the server. Testssl.sh is a tool developed with the bash programming language and used to test SSL. With testssl.sh, you can check for configuration errors that cause bugs, test HTTPS connections with simulations of several different devices, and many other features.
Here are the main features of testssl.sh
- Clear output: you can tell easily whether anything is good or bad
- Ease of installation: It works for Linux, OSX/Darwin, FreeBSD, NetBSD, OpenBSD (needs bash) and MSYS2/Cygwin out of the box: no need to install or to configure something. No gems, CPAN, pip or the like/
- Flexibility: You can test any SSL/TLS enabled and STARTTLS service, not only webservers at port 443
- Toolbox: Several command line options help you to run YOUR test and configure YOUR output
- Reliability: features are tested thoroughly
- Verbosity: If a particular check cannot be performed because of a missing capability on your client side, you'll get a warning
- Privacy: It's only you who sees the result, not a third party
- Freedom: It's 100% open source. You can look at the code, see what's going on and you can change it.
- Heck, even the development is open (github)
How to install
installation very easy, but before do it installation you must check
Oke next we must clone the repository
git clone --depth 1 https://github.com/drwetter/testssl.sh.git
after that we can use