This is the documentation for using SSLyze as a Python module. The Python API has changed multiple times in the past, but should be now considered stable (as of version 1.0.0).
This module gives full access to SSLyze’s SSL/TLS scanning engine, which can analyze the SSL configuration of a server by connecting to it and detect various issues (bad certificates, dangerous cipher suites, lack of session resumption, etc.). Using SSLyze as a Python module makes it easy to implement SSL/TLS scanning as part of continuous security testing platform, and detect any misconfiguration across a range of public and/or internal endpoints.
At high-level, running SSL/TLS scans against a server is a two-step process, described in the following sections:
- Step 1: Testing Connectivity to a Server
- Step 2: Running Scan Commands Against a Server
- Appendix: Available Scan Commands
- Shared Attributes
- Appendix: Writing Your Own Plugins