Check your website's SSL certificate, TLS configuration and HTTPS security — free
Enter a domain and we'll inspect the certificate (validity, issuer, expiry, key strength), the trust chain, supported TLS versions and ciphers, HSTS, security headers and HTTP→HTTPS behaviour — then give you a clear grade and a plain-English to-do list. Misconfigured or expiring SSL drives visitors away and hurts SEO; we'll show you exactly what to fix.
A complete, server-side HTTPS health check — the same things attackers and Google look at.
Validity dates, days until expiry, issuer, key size, signature algorithm, self-signed and wildcard detection.
Complete chain to a trusted root, missing intermediates, and whether the certificate actually matches your domain (SAN/CN).
Deprecated TLS 1.0/1.1, weak cipher families (RC4, 3DES, NULL), forward secrecy and AEAD support.
HSTS policy plus key security headers (CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy) and HTTP→HTTPS redirects.
An invalid, expired or weak certificate isn't a small detail — it directly costs you visitors, rankings and trust.
Expired or mismatched certificates trigger full-page "Not secure" warnings that scare away most visitors instantly.
Google uses HTTPS as a ranking signal and flags insecure sites in Chrome — hurting traffic and conversions.
Weak TLS and missing HSTS let attackers downgrade connections and intercept logins, payments and cookies.
PCI-DSS and most security standards require strong, valid TLS. Weak configs can fail audits and break integrations.
Our team installs and configures SSL, hardens TLS, sets up HSTS and keeps your whole site protected.
We issue, install and correctly configure your SSL certificate, fix chain/mismatch errors and force HTTPS.
Get SSL serviceFirewall, malware scanning, monitoring and hardening — full protection for your website, all-in-one.
Protect my siteInfected or blacklisted? Our experts clean your site, remove backdoors and get you delisted fast.
Clean my siteMove to managed hosting with free SSL and correct TLS configuration included and maintained for you.
See hostingYes. You can check any domain you own for free, up to 20 times per hour. No signup required.
The grade (A–F) is a quick summary of your HTTPS health based on certificate validity, TLS versions, ciphers, HSTS and security headers. Each issue is explained below the grade with a clear way to fix it.
Renew and reinstall it before the expiry date to avoid browser warnings. If you'd rather not deal with it, our team can install and auto-renew SSL for you.
Older TLS versions (1.0/1.1) and ciphers like RC4/3DES are insecure and should be disabled on your server. We can harden your TLS configuration for you.
Both. This tool diagnoses the problems; our paid services install/fix SSL, harden TLS and protect the whole website.
SiteGuarding's SSL Checker is a free tool that performs a deep, server-side inspection of your website's HTTPS setup. In a few seconds it connects to your domain on port 443, reads the certificate exactly as a browser would, validates the trust chain up to a recognized root, and reports the certificate's issuer, validity window, remaining days, key size and signature algorithm. It also probes which TLS protocol versions and cipher families your server accepts, checks for HSTS and the most important security headers, and verifies that visitors are properly redirected from HTTP to HTTPS.
A valid, well-configured SSL certificate is no longer optional. Browsers display prominent "Not secure" warnings on sites without HTTPS, search engines rank secure sites higher, and customers simply won't enter payment or login details on a site they don't trust. Expired certificates, name mismatches, incomplete chains, deprecated TLS versions and weak ciphers are among the most common — and most damaging — issues we see, and all of them are fixable.
Run the check above to get your grade and a prioritized, plain-English list of what to fix. If you'd like it handled for you, our team installs and configures SSL certificates, hardens TLS, sets up HSTS and security headers, removes malware and provides ongoing website protection and secure hosting.
