VOOZH about

URL: https://apify.com/andok/ssl-cipher-checker

โ‡ฑ SSL Cipher Suite & Security Scanner ยท Apify

๐Ÿ‘ SSL Cipher Suite & Security Scanner avatar

SSL Cipher Suite & Security Scanner

Pricing

from $1.00 / 1,000 host scans

Go to Apify Store

SSL Cipher Suite & Security Scanner

Audit TLS versions and negotiated cipher suites for a list of domains to ensure compliance and robust web security.

Pricing

from $1.00 / 1,000 host scans

Rating

0.0

(0)

Developer

๐Ÿ‘ Andok

Andok

Maintained by Community

Actor stats

0

Bookmarked

4

Total users

0

Monthly active users

3 months ago

Last modified

Share

TLS Cipher Suite Scanner

Scan TLS cipher suites to detect weak or deprecated configurations across your entire domain inventory. Outdated ciphers like RC4 or CBC-mode suites remain a top finding in compliance audits, and many teams lack visibility until a scanner flags them. Check hundreds of hosts in parallel and get structured results ready for reporting.

Features

  • Cipher suite detection โ€” identifies the exact cipher suite negotiated during the TLS handshake
  • Protocol version reporting โ€” reports TLS 1.2, TLS 1.3, or older protocol versions for each host
  • Certificate validation โ€” checks whether the server certificate is authorized and trusted
  • ALPN negotiation โ€” reports Application-Layer Protocol Negotiation results (h2, http/1.1)
  • Bulk scanning โ€” check hundreds of domains concurrently in a single run
  • Flexible input โ€” accepts plain domains, URLs, or objects with domain/url fields

Input

FieldTypeRequiredDefaultDescription
domainsarrayYesโ€”List of domains or hostnames to scan (e.g., example.com). Also accepts URLs or objects with domain/url fields
timeoutSecondsintegerNo15Connection timeout per domain in seconds (1-60)
concurrencyintegerNo10Number of domains to scan in parallel (1-50)

Input Example

{
"domains":[
"google.com",
"github.com",
"example.com"
],
"concurrency":20
}

Output

Each domain produces one dataset record with the negotiated TLS parameters and certificate status.

Key output fields:

  • domain (string) โ€” the hostname that was scanned
  • status (string) โ€” scan result status (OK or ERROR)
  • protocol (string) โ€” negotiated TLS version (e.g., TLSv1.3)
  • cipher (string) โ€” negotiated cipher suite name (e.g., TLS_AES_256_GCM_SHA384)
  • authorized (boolean) โ€” whether the server certificate is trusted
  • alpn (string) โ€” negotiated ALPN protocol (e.g., h2)
  • error (string | null) โ€” error message if the connection failed
  • checkedAt (string) โ€” ISO 8601 timestamp

Output Example

{
"domain":"github.com",
"status":"OK",
"protocol":"TLSv1.3",
"cipher":"TLS_AES_128_GCM_SHA256",
"authorized":true,
"alpn":"h2",
"error":null,
"checkedAt":"2026-03-09T12:00:00.000Z"
}

Pricing

EventCost
Host Scan$0.001

Pay only for hosts successfully scanned. Respects your per-run spending limit.

Use Cases

  • Security audits โ€” verify that all enterprise endpoints use TLS 1.2+ with strong cipher suites
  • PCI DSS compliance โ€” confirm no deprecated protocols or weak ciphers are in use across payment-processing domains
  • Vendor risk assessment โ€” bulk-scan third-party domains to evaluate their TLS configurations before onboarding
  • Infrastructure migration โ€” validate cipher suite consistency after moving to new hosting or CDN providers
  • Scheduled monitoring โ€” run weekly scans to detect cipher downgrades or misconfigurations after server changes

Related Actors

ActorWhat it adds
Security Headers AnalyzerAudit HTTP security headers (HSTS, CSP, etc.) to complement TLS-level checks
SSL Certificate MonitorMonitor certificate expiry dates alongside cipher suite auditing
Subdomain FinderDiscover all subdomains first, then feed them into cipher scanning

You might also like

SSL Certificate Inspector - TLS Audit & Expiry Monitor

santamaria-automations/ssl-certificate-inspector

Inspect SSL/TLS certificates for any domain: chain validation, expiry dates, cipher suites, TLS versions, subject alt names, issuer details, and security scoring. Export data, run via API, schedule and monitor runs, or integrate with other tools.

SSL Certificate Checker

automation-lab/ssl-certificate-checker

SSL Certificate Checker connects to domains over TLS and inspects their SSL certificates. It returns structured data about certificate validity, expiry, issuer chain, TLS protocol version, cipher suite, and a security grade from A+ to F.

๐Ÿ‘ User avatar

Stas Persiianenko

15

Website Security & Vulnerability Audit

smart-digital/website-security-vulnerability-audit

Automated security and vulnerability audit for websites. Detects WordPress plugin vulnerabilities, checks for updates, analyzes SSL/TLS, security headers, and CMS security

My Smart Digital

34

5.0

Security Headers Checker

pillowy_travel/security-headers-checker

Analyze HTTP security headers of websites and generate a security score. Detect missing headers like CSP, HSTS, X-Frame-Options, and more. Perfect for web security audits, vulnerability checks, learning, and automated monitoring.