ssllabs package

Subpackages

• ssllabs.api package
  • Submodules
  • ssllabs.api.analyze module
    • Analyze
      • Analyze.get()
  • ssllabs.api.endpoint module
    • Endpoint
      • Endpoint.get()
  • ssllabs.api.info module
    • Info
      • Info.get()
  • ssllabs.api.root_certs_raw module
    • RootCertsRaw
      • RootCertsRaw.get()
  • ssllabs.api.status_codes module
    • StatusCodes
      • StatusCodes.get()
  • Module contents
    • Analyze
      • Analyze.get()
    • Endpoint
      • Endpoint.get()
    • Info
      • Info.get()
    • RootCertsRaw
      • RootCertsRaw.get()
    • StatusCodes
      • StatusCodes.get()
• ssllabs.data package
  • Submodules
  • ssllabs.data.caa_policy module
    • CaaPolicyData
      • CaaPolicyData.caaRecords
      • CaaPolicyData.policyHostname
  • ssllabs.data.caa_record module
    • CaaRecordData
      • CaaRecordData.flags
      • CaaRecordData.tag
      • CaaRecordData.value
  • ssllabs.data.cert module
    • CertData
      • CertData.altNames
      • CertData.caaPolicy
      • CertData.commonNames
      • CertData.crlRevocationStatus
      • CertData.crlURIs
      • CertData.dnsCaa
      • CertData.id
      • CertData.issuerSubject
      • CertData.issues
      • CertData.keyAlg
      • CertData.keyKnownDebianInsecure
      • CertData.keySize
      • CertData.keyStrength
      • CertData.mustStaple
      • CertData.notAfter
      • CertData.notBefore
      • CertData.ocspRevocationStatus
      • CertData.ocspURIs
      • CertData.pinSha256
      • CertData.raw
      • CertData.revocationInfo
      • CertData.revocationStatus
      • CertData.sct
      • CertData.serialNumber
      • CertData.sgc
      • CertData.sha1Hash
      • CertData.sha256Hash
      • CertData.sigAlg
      • CertData.subject
      • CertData.validationType
  • ssllabs.data.certificate_chain module
    • CertificateChainData
      • CertificateChainData.certIds
      • CertificateChainData.id
      • CertificateChainData.issues
      • CertificateChainData.noSni
      • CertificateChainData.trustPaths
  • ssllabs.data.drown_hosts module
    • DrownHostsData
      • DrownHostsData.export
      • DrownHostsData.ip
      • DrownHostsData.port
      • DrownHostsData.special
      • DrownHostsData.sslv2
      • DrownHostsData.status
  • ssllabs.data.endpoint module
    • EndpointData
      • EndpointData.delegation
      • EndpointData.details
      • EndpointData.duration
      • EndpointData.eta
      • EndpointData.futureGrade
      • EndpointData.grade
      • EndpointData.gradeTrustIgnored
      • EndpointData.hasWarnings
      • EndpointData.ipAddress
      • EndpointData.isExceptional
      • EndpointData.progress
      • EndpointData.serverName
      • EndpointData.statusDetails
      • EndpointData.statusDetailsMessage
      • EndpointData.statusMessage
  • ssllabs.data.endpoint_details module
    • EndpointDetailsData
      • EndpointDetailsData.alpnProtocols
      • EndpointDetailsData.bleichenbacher
      • EndpointDetailsData.certChains
      • EndpointDetailsData.chaCha20Preference
      • EndpointDetailsData.compressionMethods
      • EndpointDetailsData.dhPrimes
      • EndpointDetailsData.dhUsesKnownPrimes
      • EndpointDetailsData.dhYsReuse
      • EndpointDetailsData.drownErrors
      • EndpointDetailsData.drownHosts
      • EndpointDetailsData.drownVulnerable
      • EndpointDetailsData.ecdhParameterReuse
      • EndpointDetailsData.fallbackScsv
      • EndpointDetailsData.forwardSecrecy
      • EndpointDetailsData.freak
      • EndpointDetailsData.goldenDoodle
      • EndpointDetailsData.hasSct
      • EndpointDetailsData.heartbeat
      • EndpointDetailsData.heartbleed
      • EndpointDetailsData.hostStartTime
      • EndpointDetailsData.hpkpPolicy
      • EndpointDetailsData.hpkpRoPolicy
      • EndpointDetailsData.hstsPolicy
      • EndpointDetailsData.hstsPreloads
      • EndpointDetailsData.httpForwarding
      • EndpointDetailsData.httpStatusCode
      • EndpointDetailsData.httpTransactions
      • EndpointDetailsData.implementsTLS13MandatoryCS
      • EndpointDetailsData.logjam
      • EndpointDetailsData.miscIntolerance
      • EndpointDetailsData.namedGroups
      • EndpointDetailsData.noSniSuites
      • EndpointDetailsData.nonPrefixDelegation
      • EndpointDetailsData.npnProtocols
      • EndpointDetailsData.ocspStapling
      • EndpointDetailsData.openSSLLuckyMinus20
      • EndpointDetailsData.openSslCcs
      • EndpointDetailsData.poodle
      • EndpointDetailsData.poodleTls
      • EndpointDetailsData.prefixDelegation
      • EndpointDetailsData.protocolIntolerance
      • EndpointDetailsData.protocols
      • EndpointDetailsData.rc4Only
      • EndpointDetailsData.rc4WithModern
      • EndpointDetailsData.renegSupport
      • EndpointDetailsData.serverSignature
      • EndpointDetailsData.sessionResumption
      • EndpointDetailsData.sessionTickets
      • EndpointDetailsData.sims
      • EndpointDetailsData.sleepingPoodle
      • EndpointDetailsData.sniRequired
      • EndpointDetailsData.staplingRevocationErrorMessage
      • EndpointDetailsData.staplingRevocationStatus
      • EndpointDetailsData.staticPkpPolicy
      • EndpointDetailsData.suites
      • EndpointDetailsData.supportsAead
      • EndpointDetailsData.supportsAlpn
      • EndpointDetailsData.supportsCBC
      • EndpointDetailsData.supportsNpn
      • EndpointDetailsData.supportsRc4
      • EndpointDetailsData.ticketbleed
      • EndpointDetailsData.vulnBeast
      • EndpointDetailsData.zeroLengthPaddingOracle
      • EndpointDetailsData.zeroRTTEnabled
      • EndpointDetailsData.zombiePoodle
  • ssllabs.data.host module
    • HostData
      • HostData.cacheExpiryTime
      • HostData.certHostnames
      • HostData.certs
      • HostData.criteriaVersion
      • HostData.endpoints
      • HostData.engineVersion
      • HostData.host
      • HostData.isPublic
      • HostData.port
      • HostData.protocol
      • HostData.startTime
      • HostData.status
      • HostData.statusMessage
      • HostData.testTime
  • ssllabs.data.hpkp_policy module
    • HpkpPolicyData
      • HpkpPolicyData.directives
      • HpkpPolicyData.error
      • HpkpPolicyData.header
      • HpkpPolicyData.includeSubDomains
      • HpkpPolicyData.matchedPins
      • HpkpPolicyData.maxAge
      • HpkpPolicyData.pins
      • HpkpPolicyData.reportUri
      • HpkpPolicyData.status
  • ssllabs.data.hsts_policy module
    • HstsPolicyData
      • HstsPolicyData.LONG_MAX_AGE
      • HstsPolicyData.directives
      • HstsPolicyData.error
      • HstsPolicyData.header
      • HstsPolicyData.includeSubDomains
      • HstsPolicyData.maxAge
      • HstsPolicyData.preload
      • HstsPolicyData.status
  • ssllabs.data.hsts_preload module
    • HstsPreloadData
      • HstsPreloadData.error
      • HstsPreloadData.hostname
      • HstsPreloadData.source
      • HstsPreloadData.sourceTime
      • HstsPreloadData.status
  • ssllabs.data.http_transaction module
    • HttpTransactionData
      • HttpTransactionData.fragileServer
      • HttpTransactionData.requestHeaders
      • HttpTransactionData.requestLine
      • HttpTransactionData.requestUrl
      • HttpTransactionData.responseHeaders
      • HttpTransactionData.responseHeadersRaw
      • HttpTransactionData.responseLine
      • HttpTransactionData.statusCode
  • ssllabs.data.info module
    • InfoData
      • InfoData.criteriaVersion
      • InfoData.currentAssessments
      • InfoData.engineVersion
      • InfoData.maxAssessments
      • InfoData.messages
      • InfoData.newAssessmentCoolOff
  • ssllabs.data.named_group module
    • NamedGroupData
      • NamedGroupData.bits
      • NamedGroupData.id
      • NamedGroupData.name
  • ssllabs.data.named_groups module
    • NamedGroupsData
      • NamedGroupsData.list
      • NamedGroupsData.preference
  • ssllabs.data.protocol module
    • ProtocolData
      • ProtocolData.id
      • ProtocolData.name
      • ProtocolData.q
      • ProtocolData.v2SuitesDisabled
      • ProtocolData.version
  • ssllabs.data.protocol_suites module
    • ProtocolSuitesData
      • ProtocolSuitesData.chaCha20Preference
      • ProtocolSuitesData.list
      • ProtocolSuitesData.preference
      • ProtocolSuitesData.protocol
  • ssllabs.data.sim_client module
    • SimClientData
      • SimClientData.id
      • SimClientData.isReference
      • SimClientData.name
      • SimClientData.platform
      • SimClientData.version
  • ssllabs.data.sim_details module
    • SimDetailsData
      • SimDetailsData.results
  • ssllabs.data.simulation module
    • SimulationData
      • SimulationData.attempts
      • SimulationData.certChainId
      • SimulationData.client
      • SimulationData.dhBits
      • SimulationData.dhG
      • SimulationData.dhP
      • SimulationData.dhYs
      • SimulationData.errorCode
      • SimulationData.errorMessage
      • SimulationData.keyAlg
      • SimulationData.keySize
      • SimulationData.kxStrength
      • SimulationData.kxType
      • SimulationData.namedGroupBits
      • SimulationData.namedGroupId
      • SimulationData.namedGroupName
      • SimulationData.protocolId
      • SimulationData.sigAlg
      • SimulationData.suiteId
      • SimulationData.suiteName
  • ssllabs.data.static_pkp_policy module
    • StaticPkpPolicyData
      • StaticPkpPolicyData.error
      • StaticPkpPolicyData.forbiddenPins
      • StaticPkpPolicyData.includeSubDomains
      • StaticPkpPolicyData.matchedForbiddenPins
      • StaticPkpPolicyData.matchedPins
      • StaticPkpPolicyData.pins
      • StaticPkpPolicyData.reportUri
      • StaticPkpPolicyData.status
  • ssllabs.data.status_codes module
    • StatusCodesData
      • StatusCodesData.statusDetails
  • ssllabs.data.suite module
    • SuiteData
      • SuiteData.cipherStrength
      • SuiteData.dhG
      • SuiteData.dhP
      • SuiteData.dhYs
      • SuiteData.id
      • SuiteData.kxStrength
      • SuiteData.kxType
      • SuiteData.name
      • SuiteData.namedGroupBits
      • SuiteData.namedGroupId
      • SuiteData.namedGroupName
      • SuiteData.q
  • ssllabs.data.trust module
    • TrustData
      • TrustData.isTrusted
      • TrustData.rootStore
      • TrustData.trustErrorMessage
  • ssllabs.data.trust_path module
    • TrustPathData
      • TrustPathData.certIds
      • TrustPathData.isPinned
      • TrustPathData.matchedPins
      • TrustPathData.trust
      • TrustPathData.unmatchedPins
  • Module contents

Submodules

ssllabs.ssllabs module

High level implementation of the SSL Labs API.

class ssllabs.ssllabs.Ssllabs(client: AsyncClient | None = None)

Bases: object

High level methods to interact with the SSL Labs Assessment APIs.

async analyze(host: str, *, publish: bool = False, ignore_mismatch: bool = False, from_cache: bool = False, max_age: int | None = None) → HostData

Test a particular host with respect to the cool off and the maximum number of assessments.

Parameters:

• host – Host to test

• publish – True if assessment results should be published on the public results boards

• ignore_mismatch – True if assessment shall proceed even when the server certificate doesn’t match the hostname

• from_cache – True if cached results should be used instead of new assessments

• max_age – Maximum age cached data might have in hours

See also: ssllabs/ssllabs-scan

async availability() → bool

Check the availability of the SSL Labs servers.

See also: ssllabs/ssllabs-scan

async info() → InfoData

Retrieve the engine and criteria version, and initialize the maximum number of concurrent assessments.

See also: ssllabs/ssllabs-scan

async root_certs(trust_store: TrustStore = TrustStore.MOZILLA) → str

Retrieve root certificates.

Parameters:

trust_store – Trust store to return (Mozilla, MacOS, Android, Java or Windows)

See also: ssllabs/ssllabs-scan

async status_codes() → StatusCodesData

Retrieve known status codes.

See also: ssllabs/ssllabs-scan

Module contents

Qualys SSL Labs API in Python.

exception ssllabs.EndpointError(messages: list[dict[str, str]])

Bases: Exception

The Endpoint API raised errors.

class ssllabs.Ssllabs(client: AsyncClient | None = None)

Bases: object

High level methods to interact with the SSL Labs Assessment APIs.

async analyze(host: str, *, publish: bool = False, ignore_mismatch: bool = False, from_cache: bool = False, max_age: int | None = None) → HostData

Test a particular host with respect to the cool off and the maximum number of assessments.

Parameters:

• host – Host to test

• publish – True if assessment results should be published on the public results boards

• ignore_mismatch – True if assessment shall proceed even when the server certificate doesn’t match the hostname

• from_cache – True if cached results should be used instead of new assessments

• max_age – Maximum age cached data might have in hours

See also: ssllabs/ssllabs-scan

async availability() → bool

Check the availability of the SSL Labs servers.

See also: ssllabs/ssllabs-scan

async info() → InfoData

Retrieve the engine and criteria version, and initialize the maximum number of concurrent assessments.

See also: ssllabs/ssllabs-scan

async root_certs(trust_store: TrustStore = TrustStore.MOZILLA) → str

Retrieve root certificates.

Parameters:

trust_store – Trust store to return (Mozilla, MacOS, Android, Java or Windows)

See also: ssllabs/ssllabs-scan

async status_codes() → StatusCodesData

Retrieve known status codes.

See also: ssllabs/ssllabs-scan

exception ssllabs.SsllabsOverloadedError

Bases: Exception

The service is overloaded.

exception ssllabs.SsllabsUnavailableError

Bases: Exception

The service is not available.

class ssllabs.TrustStore(value, names=None, *values, module=None, qualname=None, type=None, start=1, boundary=None)

Bases: IntEnum

Known trust stores.

ANDROID = 3

JAVA = 4

MACOS = 2

MOZILLA = 1

WINDOWS = 5