SSL/TLS Client Test

The page shows the SSL/TLS capabilities of your web browser, determines supported TLS protocols and cipher suites and marks if any of them are weak or insecure, displays a list of supported TLS extensions and key exchange groups. Using this data, it calculates the TLS-fingerprint in JA3 format. It also tests how your web browser handles requests for insecure mixed content.

Your Web Browser

User-AgentCCBot/2.0 (https://commoncrawl.org/faq/)

Protocol Support

TLS 1.3
TLS 1.2
TLS 1.1
TLS 1.0

Mixed Content Test

Images
Audio
Video
CSS
Scripts
Frames

TLS Fingerprint

JA3 Hash
JA3 Fingerprint

Handshake

TLS ProtocolTLS 1.3 [HTTP/1.1]
Cipher Suite
0x1302 TLS_AES_256_GCM_SHA384 Recommended TLS 1.3

Given Cipher Suites (in order as received)

Cipher Suites
0x1301 TLS_AES_128_GCM_SHA256 Recommended TLS 1.3
0x1302 TLS_AES_256_GCM_SHA384 Recommended TLS 1.3
0xc02c TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 Recommended TLS 1.2
0xc02b TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 Recommended TLS 1.2
0xc030 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 Secure TLS 1.2
0x009d TLS_RSA_WITH_AES_256_GCM_SHA384 NO PFS TLS 1.2
0xc02f TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 Secure TLS 1.2
0x009c TLS_RSA_WITH_AES_128_GCM_SHA256 NO PFS TLS 1.2
0xc014 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA CBC, SHA-MAC TLS 1.0,1.1,1.2
0x0035 TLS_RSA_WITH_AES_256_CBC_SHA CBC, SHA-MAC, NO PFS TLS 1.0,1.1,1.2
0xc013 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA CBC, SHA-MAC TLS 1.0,1.1,1.2
0x002f TLS_RSA_WITH_AES_128_CBC_SHA CBC, SHA-MAC, NO PFS TLS 1.0,1.1,1.2

Supported Groups (in order as received)

Named Groups
0x001d x25519
0x0017 secp256r1
0x0018 secp384r1
0x0019 secp521r1
0x001e x448
0x0100 ffdhe2048
0x0101 ffdhe3072
0x0102 ffdhe4096
0x0103 ffdhe6144
0x0104 ffdhe8192

Supported TLS Extensions (in order as received)

TLS Extensions

Further Reading

Leave a Comment (3)