explainx.ai
workshops ↗
performing-ssl-tls-security-assessment

performing-ssl-tls-security-assessment

Assess SSL/TLS server configurations using the sslyze Python library to evaluate cipher suites, certificate chains, protocol versions, HSTS headers, and known vulnerabilities like Heartbleed and ROBOT.

mukul975/Anthropic-Cybersecurity-SkillsUpdated May 25, 2026

Works with

Claude CodeCursorClineWindsurfCodexGooseGitHub CopilotZed

0

total installs

0

this week

8.6K

GitHub stars

0

upvotes

Install Skill

Run in your terminal

$npx skills install mukul975/Anthropic-Cybersecurity-Skills/performing-ssl-tls-security-assessment

0

installs

0

this week

8.6K

stars

View on GitHub
network-securityssltlssslyzecertificatecipher-suitesvulnerability-assessment
0 commentsJoin discussion →

Installation Guide

How to use performing-ssl-tls-security-assessment on Cursor

AI-first code editor with Composer

1

Prerequisites

Before installing skills in Cursor, ensure your development environment meets these requirements:

  • Cursor installed and configured on your machine
  • Node.js 16+ with npm — verify with node --version
  • Active project directory where you want to add performing-ssl-tls-security-assessment
2

Run the install command

Execute the skills CLI command in your project's root directory to begin installation:

$npx skills install mukul975/Anthropic-Cybersecurity-Skills/performing-ssl-tls-security-assessment

Fetches performing-ssl-tls-security-assessment from mukul975/Anthropic-Cybersecurity-Skills and configures it for Cursor.

3

Select Cursor when prompted

The CLI shows a list of agents. Use arrow keys and space to select Cursor:

◆ Which agents do you want to install to?
│ ── Universal (.agents/skills) ────────────────
│ · Cline · Codex · Goose · Windsurf
│ ●Cursor(selected)
│ · Cursor · Aider · Continue
4

Verify installation

Confirm successful installation by checking the skill directory location:

.cursor/skills/performing-ssl-tls-security-assessment

Restart Cursor to activate performing-ssl-tls-security-assessment. Access via /performing-ssl-tls-security-assessment in your agent's command palette.

Security Notice

We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.

Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.

View source on GitHubSkills CLI docsAbout CursorWhat are agent skills?

Documentation

name
performing-ssl-tls-security-assessment
description
Assess SSL/TLS server configurations using the sslyze Python library to evaluate cipher suites, certificate chains, protocol versions, HSTS headers, and known vulnerabilities like Heartbleed and ROBOT.
domain
cybersecurity
subdomain
network-security
tags
- network-security - ssl - tls - sslyze - certificate - cipher-suites - vulnerability-assessment
version
'1.0'
author
mahipal
license
Apache-2.0
nist_csf
- PR.IR-01 - DE.CM-01 - ID.AM-03 - PR.DS-02

Performing SSL/TLS Security Assessment

Overview

Assess SSL/TLS server configurations using sslyze, a fast Python-based scanning library. This skill covers evaluating supported protocol versions (SSLv2/3, TLS 1.0-1.3), cipher suite strength, certificate chain validation, HSTS enforcement, OCSP stapling, and scanning for known vulnerabilities including Heartbleed, ROBOT, and session renegotiation weaknesses.

When to Use

  • When conducting security assessments that involve performing ssl tls security assessment
  • When following incident response procedures for related security events
  • When performing scheduled security testing or auditing activities
  • When validating security controls through hands-on testing

Prerequisites

  • Python 3.9+ with sslyze library (pip install sslyze)
  • Network access to target HTTPS servers on port 443
  • Understanding of TLS protocol versions and cipher suite classifications

Steps

Step 1: Configure Server Scan

Create ServerScanRequest with ServerNetworkLocation specifying target hostname and port.

Step 2: Execute TLS Scan

Use sslyze Scanner to queue and execute scans for all TLS check commands concurrently.

Step 3: Analyze Results

Evaluate accepted cipher suites, certificate validity, protocol versions, and vulnerability scan results.

Step 4: Generate Security Report

Produce a JSON report with compliance findings and remediation recommendations.

Expected Output

JSON report with supported protocols, accepted cipher suites, certificate details, vulnerability results (Heartbleed, ROBOT), and HSTS status.

List & Monetize Your Skill

Submit your Claude Code skill and start earning

Get started →

Use Cases

Task Automation & Efficiency

Automate repetitive workflows and reduce manual effort

Example

Generate reports, summarize documents, draft communications

Save 3-5 hours per week on routine tasks

Knowledge Enhancement

Learn new skills, understand complex topics, get expert guidance

Example

Explain concepts, provide examples, suggest learning resources

Accelerate learning and skill development by 2x

Quality Improvement

Enhance output quality through reviews, suggestions, and refinements

Example

Review drafts, suggest improvements, catch errors

Improve work quality by 30-40% with less effort

Implementation Guide

Prerequisites

  • Claude Desktop or compatible AI client with skill support
  • Clear understanding of task or problem to solve
  • Willingness to iterate and refine outputs

Time Estimate

15-45 minutes depending on use case complexity

Steps

  1. 1Install skill using provided installation command
  2. 2Test with simple use case relevant to your work
  3. 3Evaluate output quality and relevance
  4. 4Iterate on prompts to improve results
  5. 5Integrate into regular workflow if valuable

Common Pitfalls

  • Expecting perfect results without iteration
  • Not providing enough context in prompts
  • Using skill for tasks outside its intended scope
  • Accepting outputs without review and validation

Best Practices

✓ Do

  • +Start with clear, specific prompts
  • +Provide relevant context and constraints
  • +Review and refine all outputs before using
  • +Iterate to improve output quality
  • +Document successful prompt patterns

✗ Don't

  • Don't use without understanding skill limitations
  • Don't skip validation of outputs
  • Don't share sensitive information in prompts
  • Don't expect skill to replace human judgment

💡 Pro Tips

  • Be specific about desired format and style
  • Ask for multiple options to choose from
  • Request explanations to understand reasoning
  • Combine AI efficiency with human expertise

When to Use This

✓ Use when

Use when skill capabilities match your task, clear ROI on time saved, and you can validate outputs. Best for repetitive tasks, learning, and quality improvement.

✗ Avoid when

Avoid when task requires deep expertise you can't validate, involves sensitive decisions, or when learning process is more valuable than speed of completion.

Learning Path

  1. 1Familiarize yourself with skill capabilities and limitations
  2. 2Start with low-risk, non-critical tasks
  3. 3Progress to more complex and valuable use cases
  4. 4Build expertise through regular use and experimentation

Related Skills

performing-cryptographic-audit-of-application

5

mukul975/Anthropic-Cybersecurity-Skills

performing-cryptographic-audit-of-applicationsame repo

analyzing-network-traffic-with-wireshark

2

mukul975/Anthropic-Cybersecurity-Skills

analyzing-network-traffic-with-wiresharksame repo

performing-wifi-password-cracking-with-aircrack

1

mukul975/Anthropic-Cybersecurity-Skills

performing-wifi-password-cracking-with-aircracksame repo

exploiting-deeplink-vulnerabilities

3

mukul975/Anthropic-Cybersecurity-Skills

exploiting-deeplink-vulnerabilitiessame repo

implementing-soar-playbook-with-palo-alto-xsoar

3

mukul975/Anthropic-Cybersecurity-Skills

implementing-soar-playbook-with-palo-alto-xsoarsame repo

scanning-docker-images-with-trivy

2

mukul975/Anthropic-Cybersecurity-Skills

scanning-docker-images-with-trivysame repo

Reviews

4.556 reviews
  • M
    Mateo MensahDec 20, 2024

    We added performing-ssl-tls-security-assessment from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.

  • S
    Shikha MishraDec 4, 2024

    performing-ssl-tls-security-assessment reduced setup friction for our internal harness; good balance of opinion and flexibility.

  • L
    Layla AndersonDec 4, 2024

    performing-ssl-tls-security-assessment fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.

  • Y
    Yash ThakkerNov 23, 2024

    I recommend performing-ssl-tls-security-assessment for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.

  • Y
    Yusuf ReddyNov 23, 2024

    performing-ssl-tls-security-assessment has been reliable in day-to-day use. Documentation quality is above average for community skills.

  • M
    Mateo KimNov 11, 2024

    Solid pick for teams standardizing on skills: performing-ssl-tls-security-assessment is focused, and the summary matches what you get after install.

  • E
    Emma YangNov 7, 2024

    performing-ssl-tls-security-assessment is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.

  • D
    Dev KimOct 26, 2024

    Keeps context tight: performing-ssl-tls-security-assessment is the kind of skill you can hand to a new teammate without a long onboarding doc.

  • D
    Dhruvi JainOct 14, 2024

    Useful defaults in performing-ssl-tls-security-assessment — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.

  • L
    Layla RahmanOct 14, 2024

    Solid pick for teams standardizing on skills: performing-ssl-tls-security-assessment is focused, and the summary matches what you get after install.

showing 1-10 of 56

1 / 6

Discussion

Comments — not star reviews
  • No comments yet — start the thread.