Marketplace for trusted AI agent skills

Probe public TLS endpoints for protocol, cipher, and certificate weaknesses before rollout with testssl.sh

Skill Detail

Probe public TLS endpoints for protocol, cipher, and certificate weaknesses before rollout with testssl.sh

Run a thorough TLS preflight against a host before launch, certificate renewal, or incident review.

Security & VerificationMulti-Framework
Security & Verification Multi-Framework Published
⭐ 9k GitHub stars
INSTALL WITH ANY AGENT
npx skills add agentskillexchange/skills --skill probe-public-tls-endpoints-for-protocol-cipher-and-certificate-weaknesses-before-rollout-with-testssl-sh Copy
Works best when you want a reusable capability, not another fragile one-off prompt.
View source Documentation
At a glance
Tools required
Shell environment, OpenSSL-compatible networking tools
Install & setup
Clone the repository or download a release, then run `./testssl.sh <host>` or `./testssl.sh <host>:443` against the target endpoint.
Author
testssl project
Publisher
Organization
Last updated
Apr 15, 2026
Quick brief

Use testssl.sh when an agent needs to interrogate a live HTTPS or TLS endpoint and turn the results into an actionable hardening checklist. The agent probes supported protocols, cipher suites, certificate issues, renegotiation, and other security-relevant behaviors before a service goes live or after a change. Invoke this instead of using the product normally when the job is operational verification of a deployed endpoint, not generic certificate browsing or server administration. The boundary is narrow and concrete: endpoint-level TLS assessment with remediation-oriented findings.