TLS Analysis Toolkit, inspired by Qualys' excellent SSL Server Test. If you're looking for a quick tool to do online analysis, using their tools is highly recommended.
Getting there :)
We support various SSL and TLS versions:
- SSLv2 (only basic handshake)
- SSLv3 (only basic handshake)
- TLSv1.0 (full handshake)
- TLSv1.1 (most handshake parts)
- TLSv1.2 (most handshake parts)
We support various TLS extensions:
- RFC 4492: Elliptic Curves, EC Point Formats
- RFC 4507: Session Ticket
- RFC 5246: Signature Algorithms
- RFC 5746: Renegotiation
- RFC 6066: Server Name Indication (SNI), Status Request
- RFC 6520: Heartbeat
We support testing for various vulnerabilities:
- Browser Exploit Against SSL/TLS (BEAST)
- Compression Ratio Info-leak Made Easy (CRIME)
- OpenSSL heartbeat information disclosue (Heartbleed)