This project is a web interface for testssl.sh. It can be used to offer internal TLS/SSL configuration check portals, whereever the usual public tools are not applicable. It is available as Docker image.
docker run -p 5000:5000 mailsvb/testssl.sh-web:latest
In case you need to validate against specific root certificates, you can mount a folder containing your root certificates (*.pem) into the container. E.g.
docker run -p 5000:5000 -v /your/certificates/folder/:/etc/ssl/certs/ mailsvb/testssl.sh-web:latest
If you would like to run behind a NGINX Reverse Proxy simply add this to your configuration file in sites-enabled. If you want to add security to it look at nginx module basic_auth.
location /testssl/ {
proxy_pass http://127.0.0.1:5000/;
gzip_types text/plain application/javascript;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_connect_timeout 200; # you might need to increase these values depending on your server hardware.
proxy_send_timeout 200; # you might need to increase these values depending on your server hardware.
proxy_read_timeout 200; # you might need to increase these values depending on your server hardware.
send_timeout 200; # you might need to increase these values depending on your server hardware.
}