Last updated: June 2026
certs.lol is a free TLS scanning tool. It probes publicly-observable TLS configurations and reports what it finds.
Rate limits are enforced at 60 requests per hour per IP. Results are cached for 6 hours after a scan. These limits exist to prevent abuse and keep hosting costs near zero — certs.lol runs on a shoestring so it can stay free.
If you hit the limit, wait for the window to reset or check yoke.lol for a full domain report including TLS. Automated scanning at scale without coordination is not welcome — talk to us first.
This tool is provided as-is. Scan results reflect what we observe at scan time and may not represent the complete security posture of any target. Do not use certs.lol as your sole basis for security decisions.
certs.lol performs standard TLS handshakes — the same thing any web browser does. We do not attempt exploits, inject payloads, or probe for vulnerabilities. However, you are responsible for ensuring you have appropriate authorization to scan any target you submit.
We may update these terms. Continued use constitutes acceptance.