Fast, modular TLS/SSL security scanner and compliance engine built in Rust
CipherRun is a comprehensive TLS/SSL security scanner written in Rust. It combines protocol and cipher analysis, vulnerability testing, compliance checks, and certificate transparency monitoring in a single high-performance CLI and API-ready engine.
| Feature | Description |
|---|---|
| Protocol Coverage | SSLv2 to TLS 1.3 with full handshake analysis |
| Vulnerability Tests | 18+ major TLS CVEs (Heartbleed, ROBOT, POODLE, LOGJAM, etc.) |
| Compliance Engine | PCI-DSS, NIST, HIPAA, SOC 2, Mozilla, GDPR |
| Fingerprinting | JA3, JA3S, JARM with signature databases |
| Certificate Analysis | Chain validation, revocation, EV detection |
| Monitoring | 24/7 certificate monitoring with alerts |
| CT Logs | Real-time CT log streaming + Bloom deduplication |
| Database Support | PostgreSQL/SQLite analytics and history |
git clone https://github.com/seifreed/cipherrun.git
cd cipherrun
cargo build --release
./target/release/cipherrun --helpcargo install cipherrun# Scan a host
cipherrun example.com
# Scan a URL
cipherrun https://example.com
# Run full vulnerability scan
cipherrun -U example.com# Protocol testing
cipherrun -p example.com
# Cipher enumeration
cipherrun -e example.com
# JSON output
cipherrun --json results.json example.com
# HTML report
cipherrun --html report.html example.com# SMTP with STARTTLS
cipherrun -t smtp mail.example.com:587
# IMAP with STARTTLS
cipherrun -t imap mail.example.com:143Terminal, JSON, CSV, HTML, XML
- Scanner Engine: Async Tokio-based probes
- Protocols: SSLv2 → TLS 1.3
- Vuln Suite: 18+ checks
- Fingerprinting: JA3/JA3S/JARM
- Compliance: 7 frameworks
- Database: SQL migrations + analytics
Contributions are welcome:
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
If you find CipherRun useful, consider supporting its development:
This project is licensed under GPL-3.0 - see the LICENSE file for details.
Attribution Required:
- Author: Marc Rivero | @seifreed
- Repository: github.com/seifreed/cipherrun
Made with dedication for the security community