Quicklinks: Home | Contact |

Harden SSL/TLS - Tool release

Subscribe to the RSS feed in case you are interested in updates
“Harden SSL/TLS” allows hardening the SSL/TLS settings of Windows 2000,2003,2008,2008R2, XP,Vista,7. It allows locally and remotely set SSL policies allowing or denying certain ciphers/hashes or complete ciphersuites.

^This tool specifically allows setting policies with regards to what ciphers and protocols are available to applications that use SCHANNEL crypto interface. A lot of windows applications do use this interface, for instance Google Chrome as well as Apple Safari are a few of these. By changing the settings you can indirectly control what ciphers these applications are allowed to use.

Advanced mode
· re-enable ECC P521 mode on Windows7 and 2008R2
· Set TLS Cache size and timeout

Known issues:
· none

Author :
Thierry ZOLLER for G-SEC
Download: Harden TLS/SSL (beta)
Download: Documentation


At 28 January, 2013 16:57 Anonymous said...

I was getting Internet Explorer "Page Cannot be Displayed" error on some https ssl web sites, this did the trick...

At 31 October, 2013 15:19 Anonymous said...

This seems like a great tool, but I cannot get it to work on my Windows 7 machine. Whenever I run the program I get the following error:

"Exception ECException in module sslharden.exe at 000231BD. Array cannot be null."


Post a Comment