Security - SSL

Daniel Ruiz – Blog - Server Name Indication (SNI) and SSL VPN

A Few Thoughts on Cryptographic Engineering - Attack of the week: OpenSSL Heartbleed

OWASP - Transport Layer Protection Cheat Sheet

nmap -sV --script ssl-enum-ciphers -p 443 HOSTNAMEORIP

Sources:

• Jumpnow Technologies - Using Nmap to check certs and supported TLS algorithms
• nmap.org - ssl-enum-ciphers NSE script

GitHub - nabla-c0d3 / sslyze Fast and powerful SSL/TLS scanning library. Has a standalone release to unpack and use on Windows.