SSL Security Test

Deep analysis of your server's SSL/TLS configuration with a security grade. Tests protocols, cipher suites, certificate chain, and HSTS.

Get an SSL Labs-style letter grade (A+ through F) for any domain. We test protocol support, cipher strength, key exchange, vulnerability exposure, and certificate chain health — all in one scan.

Scanning

Initializing...

A-

cirrus.lockton.com

Score: 96/100 — Scanned in 5.1s

Protocol

100

Key Exchange

100

Cipher Strength

Scanned: 4/27/2026, 6:06:44 PM

Don't let this cert expire on a Friday afternoon.

Monitor cirrus.lockton.com continuously. We'll re-grade it daily, watch the chain + OCSP, and alert you 30 / 14 / 7 / 3 days before expiry through Slack, Teams, email, or webhook.

Monitor this cert →

Protocol Support

SSL 2No

SSL 3No

TLS 1.0No

TLS 1.1No

TLS 1.2Yes

TLS 1.3Yes

Cipher Suites (5)

TLS 1.2 (2)

ECDHE-RSA-CHACHA20-POLY1305 256 bit FS AEAD

ECDHE-RSA-AES256-GCM-SHA384 256 bit FS AEAD

TLS 1.3 (3)

TLS_AES_256_GCM_SHA384 256 bit FS AEAD

TLS_CHACHA20_POLY1305_SHA256 256 bit FS AEAD

TLS_AES_128_GCM_SHA256 128 bit FS AEAD

Vulnerabilities

Heartbleed✓ Heartbeat extension not present

POODLE (SSLv3)✓ SSLv3 not supported

CRIME✓ TLS compression disabled

BEAST✓ TLS 1.0 not supported

Secure Renegotiation✗ Secure renegotiation not supported (insecure)

Downgrade Prevention✓ Server only supports TLS 1.2+ (downgrade not applicable)

Monitor this certificate automatically

Get alerts before certificates expire, when grades drop, and when certs change.

Set Up Certificate Monitoring

SSL Security Test

Scanning

cirrus.lockton.com

Monitor this certificate automatically

What does this SSL security test check?

How is the grade calculated?