Hacker Timesnew | past | comments | ask | show | jobs | submitlogin

SSL labs is the gold standard:

https://www.ssllabs.com/ssltest/

But I don't see a way to automate a test for the integrity of (say) a password recovery flow or that one user cannot access another user's data.



Yeah that's what I use at present, if it's not an A+ it's not OK. Would be nice to have an open source version of this that could perform additional checks though.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: