# testssl/testssl.sh **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/testssl-testssl-sh).** 8,912 stars · 1,114 forks · Shell · gpl-2.0 ## Links - GitHub: https://github.com/testssl/testssl.sh - Homepage: https://testssl.sh - awesome-repositories: https://awesome-repositories.com/repository/testssl-testssl-sh.md ## Topics `cipher` `client-simulation` `csv` `ct` `http-header` `ipv6` `json` `kem` `openssl` `pqcrypto` `quic` `ssl` `tls` ## Description testssl.sh is a network security tool and SSL/TLS security scanner used to audit server configurations. It functions as a diagnostic utility that validates supported ciphers and protocols to identify cryptographic vulnerabilities and flaws in encrypted communication. The tool is available as both a command-line utility and a dockerized security scanner, allowing for execution in isolated environments without the need for local dependency installation. Its capabilities cover SSL configuration auditing and TLS server security analysis. The system exports scan results into structured reports available in HTML, JSON, and CSV formats for security audits and compliance documentation. ## Tags ### Part of an Awesome List - [SSL and TLS Security](https://awesome-repositories.com/f/awesome-lists/security/ssl-and-tls-security.md) — Audits SSL/TLS configurations and certificates to ensure secure communication and correct server setup. - [Containerized Security Environments](https://awesome-repositories.com/f/awesome-lists/devops/containerized-security-environments.md) — Enables the execution of security checks within an isolated Docker container to streamline deployment. ([source](https://github.com/testssl/testssl.sh/blob/3.2/Dockerfile.md)) - [Command Line Tools](https://awesome-repositories.com/f/awesome-lists/devtools/command-line-tools.md) — Listed in the “Command Line Tools” section of the The Book Of Secret Knowledge awesome list. ### Security & Cryptography - [SSL/TLS Analyzers](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/compliance-governance/audit-and-compliance/cryptographic-configuration-analyzers/ssl-tls-analyzers.md) — Performs deep security analysis on server SSL and TLS configurations to identify cryptographic flaws. - [Network Encryption Auditors](https://awesome-repositories.com/f/security-cryptography/network-encryption-auditors.md) — Audits the strength of network encryption and validates supported ciphers to ensure secure communication. - [Network Security Auditing](https://awesome-repositories.com/f/security-cryptography/network-security-auditing.md) — Produces detailed reports on server encryption standards to document security compliance for audits. - [TLS Handshake Probing](https://awesome-repositories.com/f/security-cryptography/web-asset-probing/service-probing/tls-handshake-probing.md) — Utilizes OpenSSL to initiate handshakes and analyze the supported cryptographic primitives of a server. - [Security Report Generation](https://awesome-repositories.com/f/security-cryptography/security-report-generation.md) — Generates security-focused test reports in CSV, JSON, and HTML formats for manual or automated processing. ([source](https://cdn.jsdelivr.net/gh/testssl/testssl.sh@3.3dev/README.md)) - [Security Scanners](https://awesome-repositories.com/f/security-cryptography/security-scanners.md) — Functions as a security scanner that identifies vulnerabilities in SSL/TLS configurations via a containerized or CLI interface. ### Development Tools & Productivity - [Data File Generators](https://awesome-repositories.com/f/development-tools-productivity/documentation-generators/data-file-generators.md) — Generates structured scan results in HTML, JSON, and CSV formats for archival and analysis. ### DevOps & Infrastructure - [Automated Testing Containers](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators/docker-target-configurators/docker-container-deployments/docker-container-execution/automated-testing-containers.md) — Provides a Docker-based execution environment to ensure consistent dependencies and isolation during security scans. - [Scan Result Exporters](https://awesome-repositories.com/f/devops-infrastructure/scan-result-interpreters/scan-result-exporters.md) — Exports scan findings into structured HTML and JSON reports for external analysis and archival. ([source](https://github.com/testssl/testssl.sh/blob/3.2/Dockerfile.md))