SSL Security Test

Deep analysis of your server's SSL/TLS configuration with a security grade. Tests protocols, cipher suites, certificate chain, and HSTS.

Scanning

Initializing...
B

lockton.com

Score: 96/100 — Scanned in 3.7s

Protocol
100
Key Exchange
100
Cipher Strength
90
Scanned: 3/22/2026, 3:55:36 AM
Warnings (1)
  • Not all cipher suites support forward secrecy
Protocol Support
SSL 2No
SSL 3No
TLS 1.0No
TLS 1.1No
TLS 1.2Yes
TLS 1.3Yes
Cipher Suites (23)
TLS 1.2 (20)
ECDHE-ECDSA-CHACHA20-POLY1305 256 bit FS AEAD
ECDHE-ECDSA-AES128-GCM-SHA256 128 bit FS AEAD
ECDHE-ECDSA-AES128-SHA 128 bit FS
ECDHE-ECDSA-AES256-GCM-SHA384 256 bit FS AEAD
ECDHE-ECDSA-AES256-SHA 256 bit FS
ECDHE-ECDSA-AES128-SHA256 128 bit FS
ECDHE-ECDSA-AES256-SHA384 256 bit FS
ECDHE-RSA-CHACHA20-POLY1305 256 bit FS AEAD
ECDHE-RSA-AES128-GCM-SHA256 128 bit FS AEAD
ECDHE-RSA-AES128-SHA 128 bit FS
AES128-GCM-SHA256 128 bit AEAD
AES128-SHA 128 bit
ECDHE-RSA-AES256-GCM-SHA384 256 bit FS AEAD
ECDHE-RSA-AES256-SHA 256 bit FS
AES256-GCM-SHA384 256 bit AEAD
AES256-SHA 256 bit
ECDHE-RSA-AES128-SHA256 128 bit FS
AES128-SHA256 128 bit
ECDHE-RSA-AES256-SHA384 256 bit FS
AES256-SHA256 256 bit
TLS 1.3 (3)
TLS_AES_256_GCM_SHA384 256 bit FS AEAD
TLS_CHACHA20_POLY1305_SHA256 256 bit FS AEAD
TLS_AES_128_GCM_SHA256 128 bit FS AEAD
Vulnerabilities
Heartbleed✓ Heartbeat extension not present
POODLE (SSLv3)✓ SSLv3 not supported
CRIME✓ TLS compression disabled
BEAST✓ TLS 1.0 not supported
Secure Renegotiation✗ Secure renegotiation not supported (insecure)
Downgrade Prevention✓ Server only supports TLS 1.2+ (downgrade not applicable)

Monitor this certificate automatically

Get alerts before certificates expire, when grades drop, and when certs change.

Set Up Certificate Monitoring