Get the Secure Sockets Layer (SSL) of a domain name, along with its entire SSL certificate chain, to uncover possible inconsistencies and misconfigurations that could point to exploitable vulnerabilities. Each SSL Certificate Chain Lookup query gives information that enables more comprehensive security enrichment, letting you know which domains you can trust and which you cannot.
When was the SSL certificate and SSL certificate chain result queried?
How many SSL certificates are there in the domain’s SSL certificate chain?
What is the domain’s IP resolution?
What port number does the domain host use to establish SSL connections?
What are the available SSL certificates in the SSL certificate chain of the domain? What are their types—end-user, intermediate, or root?
What other information is available for each SSL certificate? Results include SSL certificate hierarchy, validation type and period, signature algorithm, serial number, common name, issuer name, country, and common name, public key, type, size and PEM file information. (See more details about its output format.)
You can get access to the most current SSL certificate issued for each domain.
You obtain well-parsed and well-formatted SSL certificate chain results, allowing for better understanding and faster integration.
We provide SSL certificate chain lookup results in the form of a downloadable detailed report (JSON format).
Check your SSL certificates and SSL certificate chain for any sign of unauthorized modifications that can translate to a potential domain or subdomain takeover.
Determine which domains you can and cannot trust by digging deeper into their SSL certificates and SSL certificate chains.
Identify the SSL certificate’s validation type to ensure it is not self-signed, as such certificates often figure in man-in-the-middle (MitM) and typosquatting attacks.
Enhance your attack surface management efforts by identifying which domains have SSL certificates that are about to expire or already expired.
Stay updated on SSL certificate and SSL certificate chain modifications even if the domains they belong to often change ownership.