It is a common practice to check for loopholes and errors after installation of SSL Certificates in the server. Your website will be immune to information tapping techniques if SSL certificates are properly installed. Your passwords and credit card data is encrypted before submitting the order page. HTTPS sites create positive impression and gain customer confidence. Google gives extra traffic to SSL enabled sites over simple HTTP sites. Thinking about your server safety, you invest money on buying and renewing SSL certificates. It is mandatory to check for valid installation of SSL Certificates using various SSL Provider websites and correct error if any, so that you can concentrate on other development works on the site. We present you top 7 SSL Checker Tools available free of cost.
SSL Verifying Websites
Digicert checks your website SSL certificate for Expiration Date, Revocation Status, DNS matching, Protocol support, Cipher Suite and Heart Bleed Vulnerability. It asks for Server address. Just enter your website name with or without https extension. Do not forget to check the Checkbox to scan for vulnerabilities.
Godaddy is popular Hosting provider and SSL Certificate issuer. Godaddy SSL Checker lists information about IP Address, Server Type, Algorith, SCSV Fallback, OCSP Status, Encryption Methods, Heartbleed Vulnerability, Safe Ciphers, Unsafe Ciphers and Certificate Chain. Listing of info is clean and understood easily.
Comodo is also a well known SSL Checker Tool. It tells whether your SSL is trusted by Mircrosoft and Mozilla. It also tells the support for various Transport Layer Security Protocols (TLS) and SSL versions. You can see the Validation Type of SSL as well. Just like Godaddy tool, this is also a simple one.
SSLChecker is a simple tool to check your website for SSL mis configurations. SSLChecker tells your certificate's Key Length, Server Type, Domain Mapping To SSL name, Certificate Chain Errors, Issuer Name and Signature Algorithm.
5) Qualys SSLLabs
Qualys SSLLabs analyses your site's SSL for so many parameters. It gives rating to your site with A, B and C. SSLLabs uses simulation with various browser types and versions to check for accepted Cipher and Protocol version. It even identifies TLS Protocol Downgrade attack. It spends more than 3 minutes to thoroughly check your website's SSL security. Also it checks your SSL in various Android versions starting from Android 2.3.7. Windows XP Clients may not respond to your server as expected in many cases and throw compatibility errors.
WhyNoPadlock gives you pin point information about your SSL Certificate installation. One interesting report parameter is how many outgoing requests are there from your site http & https wise. Also Outgoing request domain names are listed for reference. Although it provides very basic information, it can be understood easily even by non technical persons.
CertLogik is another SSL Certificate Checker Tool that lists all the information about the installed SSL Cert. Check list includes Validity, Weak Key, Key-Size, Signature Algorithm, Site Listed Status, Trusted or Not, Certificate Issuer, Finger Print, SANS, all root and chain certificate information.
Drop your comments if you find this article useful.