Tecno Inteligente
ES EN

SSL/TLS Scanner PRO

Scan any domain and get a clear report about its SSL/TLS setup, including certificate data, supported protocols, HTTPS redirection, HSTS, findings, and recommendations.

Online Free
← Tools Use now
SSL / TLS PRO

SSL/TLS Scanner PRO

Analyze the HTTPS configuration of any domain and get a clear report about the SSL certificate, supported TLS versions, HTTPS redirection, HSTS, and several technical indicators that help you evaluate the overall security of the connection.

This tool is designed for quick checks, basic technical audits, HTTPS troubleshooting, and periodic reviews of domains, subdomains, or public services running with SSL/TLS.

Analyzing domain. This may take a few seconds depending on the server response.
Enter only the domain or domain:port. Do not include http://, https://, paths, or parameters.
What it checks Certificate, validity, issuer, SAN, HTTPS redirection, HSTS, and TLS version support.
What you get A report with score, findings, recommendations, and technical JSON output.
-
Score: -
No results yet.

Report summary

Target
-
Detected IP
-
Duration
-
A quick summary of the overall SSL/TLS configuration will appear here.

Technical summary

Supported protocols

Certificate

HTTP and HTTPS

Findings

Checks

Recommendations

    Technical report (JSON)

    What is an SSL/TLS scanner and what is it used for?

    An SSL/TLS scanner is a tool that analyzes how a secure connection is configured on a domain or web service. Instead of only checking whether a certificate exists, it reviews several important points that affect the real security of the site: protocol versions, certificate details, redirects, headers such as HSTS, and general signals of whether the configuration is correct or can be improved.

    In real environments, this is useful for system administrators, developers, infrastructure teams, support technicians, and technical SEO consultants. A domain may load over HTTPS and still have weak points, such as a certificate that is about to expire, missing HSTS, or old TLS versions still enabled. That is why periodic reviews are a good idea.

    What this tool analyzes

    Main checks

    • SSL certificate: extracts the Common Name, issuer, certificate validity, Subject Alternative Names, and other basic data useful for a technical review.
    • Dates and expiration: calculates the remaining days so you can spot pending renewals or certificates close to expiration.
    • HTTPS redirection: checks whether the domain responds over HTTP and ends up redirecting correctly to HTTPS.
    • HSTS: verifies whether the server sends the Strict-Transport-Security header and displays its value when present.

    Additional signals

    • Supported TLS protocols: tries to detect whether the server accepts TLS 1.0, 1.1, 1.2, and 1.3.
    • Banners and HTTP response: shows the HTTP status code and server or application signals when available.
    • Prioritized findings: organizes the result into critical issues, warnings, and correct items.
    • Recommendations: turns technical analysis into concrete and easier-to-understand actions.

    How to interpret the report

    The overall grade and score are useful as a quick reference, but the context matters most. A domain may have a good overall score and still show relevant warnings, such as missing HSTS, incomplete redirects, or old TLS versions still enabled. In the same way, a valid certificate does not automatically mean the entire HTTPS configuration is well set up.

    The best way to use the report is to start with the findings section. Then review the certificate details, the HTTP/HTTPS block, and the supported protocols section. This makes it easier to identify whether the problem comes from certificate validity, the transport layer, or the overall security policy applied to the site.

    When to use this SSL/TLS scanner

    • After installing or renewing an SSL certificate.
    • After a hosting, CDN, reverse proxy, or load balancer migration.
    • When you want to confirm that HTTP redirects properly to HTTPS.
    • If you need to check whether HSTS is active or whether an old TLS version is still enabled.
    • As part of a periodic technical review for corporate websites, online stores, blogs, web tools, and public APIs.
    • Before a technical audit or a broader hardening review.

    Benefits of reviewing SSL/TLS configuration regularly

    Regular HTTPS security checks help detect issues before they become visible incidents for users or browsers. An expired certificate, a misconfigured header, or an outdated TLS policy can lead to security warnings, access errors, loss of trust, and operational problems across websites, dashboards, or APIs.

    On top of that, having a modern and stable configuration reduces friction during deployments, renewals, and infrastructure changes. In environments with multiple sites or subdomains, a quick tool like this helps verify faster whether a technical change was applied correctly.

    Limitations of this tool

    This analyzer is designed to be compatible with hosting environments where you cannot install system-level tools. That is why it uses PHP, cURL, and OpenSSL. This makes it possible to generate a useful and fairly complete report for many real-world checks, but it is not intended to replace a specialized low-level scan performed directly on a server.

    In other words, it is a very practical tool for quick technical checks and periodic reviews, but it does not replace an advanced cryptographic audit with full cipher suite enumeration, deep client simulation, and exhaustive protocol vulnerability analysis.

    Who can benefit from this SSL/TLS scanner

    Technical profiles

    • System administrators.
    • Web and backend developers.
    • DevOps and infrastructure teams.
    • Support and maintenance technicians.

    Other useful profiles

    • Technical SEO consultants reviewing security and redirects.
    • Agencies or freelancers managing client websites.
    • Product or business owners who need to validate the general state of a domain.
    • Owners of websites or online tools who want to review HTTPS without extra complexity.

    Frequently asked questions

    Does this tool check whether the certificate is valid?

    Yes. It extracts certificate information and shows temporal validity, issuer, Common Name, and Subject Alternative Names. It also indicates how many days are left before expiration.

    Does it detect whether HTTP redirects to HTTPS?

    Yes. It performs a specific check to see whether the domain ultimately resolves to an HTTPS URL and reflects that in the report.

    Can it tell whether HSTS is active?

    Yes. If the server sends the Strict-Transport-Security header, the tool detects it and also shows its value.

    Can I analyze ports other than 443?

    Yes. You can enter the target as domain:port, for example example.com:8443, as long as the service is publicly accessible.

    Is it a complete replacement for advanced TLS audit tools?

    Not exactly. It is a practical solution for useful reviews from shared hosting or limited environments, but it does not replace a deep cryptographic analysis run with specialized system tools.

    Conclusion

    A correct SSL/TLS configuration is not just about “having a padlock.” It also matters that the certificate is valid, does not expire soon, HTTP redirects correctly to HTTPS, HSTS is present when appropriate, and old TLS versions are not unnecessarily left enabled. This SSL/TLS Scanner helps you review those points quickly, clearly, and practically.

    If you manage websites, online tools, internal dashboards, or APIs, running this type of check from time to time can save you problems before browser warnings, trust issues, or deployment incidents appear.