What is this? This service scans the TLS settings of a web server and compares it to the Mozilla TLS recommendations.
Why is there no grade? Because that is not the aim of this tool. This tool is for you if you want to achieve compliance with Mozilla's recommandations, but does not produce a grade for your CISO.
Why else would I use this? This tool is quite fast. A scan usually takes about 30 to 60 seconds.
But the server is overloaded! Things happen. Please set up your own (local or public) server, we provide a Docker image for you:
docker run -p 8000:8000 danielfett/webtlsprofiler
How does this work? This is a web interface for the TLS Profiler Python package, which uses the sslyze library and other magic. We invite you to contribute to all of these tools!
Who made this?This web interface, the TLS Profiler package, and the yesses tool for which the TLS Profiler was written originally were developed by Fabian Hauck (in his Bachelor's thesis at the Institute for Information Security at the University of Stuttgart) and Daniel Fett (for yes.com).
I found a bug! Great! Please file it here.