Welcome to tlsfuzzer!

tlsfuzzer tests SSL and TLS implementations.

It allows for testing standards-compliance of a given implementation, testing for presence of known vulnerabilities as well as fuzzing of the SSL and TLS connections.

You can find ready to use scripts that test significant parts of TLS protocols in the source repository.

The testing of OpenSSL, GnuTLS, NSS, and other implementations commonly includes running tlsfuzzer test cases.

While tlsfuzzer doesn’t support some features of TLS, it includes the most commonly used ones: TLS 1.2, TLS 1.3, RSA certificates, ECDSA certificates, ECDHE key exchange, client certificates, AES-GCM, Chacha20-Poly1305 ciphers, etc. See the issue tracker on GitHub to see wanted, but not yet implemented features.