SSL scanner for certificate intelligence.
Analyze certificate security status, issuer information, and validity windows for any public URL.
About
This feature retrieves SSL certificate intelligence for a target URL. It helps you verify certificate status, identify the issuing authority, review validity windows, and inspect raw certificate metadata returned by WebCheck.
The tool surfaces both a compact security summary for quick triage and the full raw JSON payload for deeper investigation or reporting evidence.
How to interpret SSL signals
| Field | What it tells you | What to watch |
|---|---|---|
| Status | Current certificate health classification. | EXPIRING_SOON or EXPIRED on production domains. |
| Subject | Hostname identity encoded in the certificate. | Subject mismatch with expected primary host. |
| Issuer | Certificate authority chain hint. | Unexpected issuer shifts across critical assets. |
| Valid from / Expires | Certificate lifecycle boundaries. | Short validity windows without renewal monitoring. |
| Days until expiry | Operational urgency to renew. | Low or negative values requiring immediate action. |
| Grade | Provider-level SSL quality indicator when available. | Missing or weak grade on customer-facing services. |
Use cases
- Verify SSL hygiene during external attack surface reviews.
- Detect expiring certificates before service disruption.
- Investigate suspicious infrastructure changes via issuer and validity shifts.
- Support compliance evidence with synchronized raw certificate payloads.