SSL評級評估工具
為任意HTTPS網站的SSL/TLS設定評級。檢查協定版本、加密強度以及憑證到期情況。
如何使用本工具
- 1
Type a hostname or full URL into the input box (for example example.com or https://example.com) — the tool extracts the hostname and always connects on port 443.
- 2
Click 'Grade SSL' to make the server open a TLS connection to that host.
- 3
Read the big grade card (A+, A, or F) for the headline result.
- 4
Scan the details table for the negotiated protocol, cipher, issuer, and certificate expiry date, plus any warning notes listed below it.
什麼是SSL評級評估工具?
並非所有HTTPS都同等可靠。一個網站在技術上可以是HTTPS的,卻使用著過時的TLS 1.0或RC4之類的弱加密演算法,使流量易遭攔截。本工具會根據協定版本、加密套件和憑證有效性,按從A到F的簡明等級對即時TLS交握進行評級。
常見使用場景
Confirm a freshly deployed site negotiates TLS 1.3 (A+) rather than silently falling back to TLS 1.2 or older.
Spot-check an internal or staging host that uses a self-signed certificate, since the tool connects even when the chain does not validate.
Quickly see a certificate's issuer and expiry date and whether it falls inside the 30-day warning window.
Catch a server still offering a legacy protocol or an RC4/DES cipher, which immediately scores F.
Sanity-check a vendor or partner endpoint before integrating, to see what protocol and cipher your client would actually get.
Demonstrate to a teammate, in seconds, why 'it has HTTPS' is not the same as 'it has a modern TLS configuration'.