New: CheckVibe MCP server — scan from Claude Code and Cursor nativelyRead the docs
Verify your SSL/TLS configuration, certificate validity, and encryption strength.
Overview
SSL/TLS is the encryption layer that protects data in transit between users and your server. Our scanner verifies certificate validity, checks for weak cipher suites, tests protocol versions, and ensures proper HTTPS enforcement including HSTS configuration.
What this scanner does
Checks SSL certificate validity and expiration, supported TLS protocol versions (TLS 1.2/1.3), cipher suite strength, certificate chain completeness, HSTS header presence, and whether HTTP properly redirects to HTTPS.
Why it matters
Weak or misconfigured TLS allows attackers to intercept sensitive data through man-in-the-middle attacks. Expired certificates break user trust and trigger browser warnings. Search engines also penalize sites without valid HTTPS.
Common findings
OWASP Top 10 coverage
Get a full security report with AI-powered fix suggestions in 30 seconds. No setup required.
Related checks
Configuration Audit
Check if your site has the right HTTP security headers to prevent common attacks.
Infrastructure Check
Verify DNS configuration, SPF, DKIM, DMARC records, and domain security.
Configuration Audit
Audit cookie flags, session management, and token security for your application.
