The CertRadar security tool is a new web-based service designed to analyze SSL and TLS certificates linked to internet domains. It allows users to review certificates issued by trusted Certificate Authorities. The tool helps identify unexpected, expired, or unauthorized certificates connected to a website.
CertRadar was introduced through the Hacker News community. The developer built the tool using the Rust programming language and deployed it on Google Cloud Run. The service is free to use and works directly in a web browser without registration.
Certificate transparency and domain visibility
One core feature of the CertRadar security tool is certificate log search. Users enter a domain name, and the system queries public Certificate Transparency logs. These logs record all certificates issued by recognized authorities. The results show every certificate tied to the domain, including older and inactive ones.
This feature allows administrators to detect certificates they did not request. It also helps confirm whether third parties have issued certificates without authorization. Certificate Transparency data improves visibility into how domains are secured across the internet.
TLS scanning and security header checks
CertRadar includes a TLS scanner that evaluates encryption settings. The scanner displays supported protocol versions, certificate chains, and expiration dates. This helps users verify that a domain follows current security standards.
The tool also checks HTTP security headers. These headers include HSTS, CSP, and other protections that reduce common web threats. CertRadar reports whether these headers are active and correctly configured for the domain.
Multi-domain reporting and health overview
Another feature of the CertRadar security tool is multi-domain reporting. Users can submit several domains at once and receive a combined analysis. This is useful for organizations managing large numbers of websites.
CertRadar also provides a domain health overview. This view combines DNS data, certificate status, and registration information. The tool uses RDAP queries to display ownership and network details when available.
CertRadar is designed to support website administrators, developers, and security teams. It provides visibility into certificate usage and domain security without requiring advanced technical setup.
Source: https://gigazine.net/gsc_news/en/20260131-cert-radar/
