SSL评级评估工具
为任意HTTPS网站的SSL/TLS配置评级。检查协议版本、加密强度以及证书到期情况。
如何使用本工具
- 1
Type a hostname or full URL into the input box (for example example.com or https://example.com) — the tool extracts the hostname and always connects on port 443.
- 2
Click 'Grade SSL' to make the server open a TLS connection to that host.
- 3
Read the big grade card (A+, A, or F) for the headline result.
- 4
Scan the details table for the negotiated protocol, cipher, issuer, and certificate expiry date, plus any warning notes listed below it.
什么是SSL评级评估工具?
并非所有HTTPS都同等可靠。一个网站在技术上可以是HTTPS的,却使用着过时的TLS 1.0或RC4之类的弱加密算法,使流量易遭拦截。本工具会根据协议版本、加密套件和证书有效性,按从A到F的简明等级对实时TLS握手进行评级。
常见使用场景
Confirm a freshly deployed site negotiates TLS 1.3 (A+) rather than silently falling back to TLS 1.2 or older.
Spot-check an internal or staging host that uses a self-signed certificate, since the tool connects even when the chain does not validate.
Quickly see a certificate's issuer and expiry date and whether it falls inside the 30-day warning window.
Catch a server still offering a legacy protocol or an RC4/DES cipher, which immediately scores F.
Sanity-check a vendor or partner endpoint before integrating, to see what protocol and cipher your client would actually get.
Demonstrate to a teammate, in seconds, why 'it has HTTPS' is not the same as 'it has a modern TLS configuration'.