Bulk SSL Certificate Checker โ€” Expiry, Issuer & TLS avatar

Bulk SSL Certificate Checker โ€” Expiry, Issuer & TLS

Pricing

from $3.50 / 1,000 results

Go to Apify Store
Bulk SSL Certificate Checker โ€” Expiry, Issuer & TLS

Bulk SSL Certificate Checker โ€” Expiry, Issuer & TLS

Check SSL/TLS certificates for thousands of domains at once โ€” expiry date, issuer, SANs, days remaining, TLS versions supported and chain validation. No API key. Export to CSV or JSON. Ideal for security audits, certificate monitoring and compliance.

Pricing

from $3.50 / 1,000 results

Rating

0.0

(0)

Developer

Logiover

Logiover

Maintained by Community

Actor stats

0

Bookmarked

2

Total users

1

Monthly active users

4 days ago

Last modified

Share

Bulk SSL/TLS Checker ๐Ÿ” โ€” HTTPS Reachability, Certificate Status & TLS Audit (No API)

Bulk SSL/TLS Checker No API key Pay per result Category Export

Check SSL/TLS and HTTPS reachability for thousands of domains in a single run. Paste a list of domains and this bulk SSL checker connects to each one over HTTPS (port 443), performs the TLS handshake, and returns a clean row with TLS reachability, HTTP status code, response latency, final redirect URL and a classified error type โ€” so you instantly know which hosts are HTTPS-healthy and which are broken. No API key, no external SaaS, no SSL Labs rate limits โ€” pure client-side TLS probing.

๐Ÿ† Why this SSL/TLS checker?

Thousands of domains per run ยท TLS handshake + HTTPS reachability in one pass ยท TLS errors classified separately from timeouts and DNS failures ยท direct connection (no third-party API) ยท export to JSON / CSV / Excel. The unofficial SSL checker API alternative for HTTPS monitoring, uptime canaries and security audits โ€” with no API key.


โœจ What this Actor does / Key features

  • ๐Ÿ” Bulk TLS + HTTPS probing โ€” connect to thousands of domains over HTTPS in a single parallel run.
  • ๐Ÿ“ก Reachability at a glance โ€” hasTls tells you whether the host completed a TLS handshake and served content over HTTPS.
  • ๐Ÿ”ข HTTP status + latency โ€” capture the returned statusCode and the round-trip latencyMs for every domain.
  • ๐Ÿ”€ Redirect resolution โ€” follows up to 3 redirects and reports the finalUrl the host resolves to.
  • ๐Ÿง  Smart error classification โ€” failures are bucketed as tls_error, timeout, connection_error or unknown, so a cert problem is never confused with a DNS or timeout issue.
  • โšก High concurrency โ€” configurable parallel connections (default 10, up to 100) for fast bulk scans.
  • ๐Ÿงน Robust input parsing โ€” schemes (https://), paths, ports and trailing dots are stripped automatically; duplicates removed.
  • ๐Ÿ›ก๏ธ No API key, no SaaS โ€” everything runs client-side in the Apify runtime; no SSL Labs dependency, no external rate limits.
  • ๐Ÿ’พ Export anywhere โ€” download as JSON, CSV, Excel or XML, or pull via the Apify API.

๐Ÿš€ Quick start (3 steps)

  1. Configure โ€” paste your domain list into Domains, one per line (example.com or https://example.com/path both work).
  2. Run โ€” click Start. The Actor probes every domain over HTTPS in parallel and streams one row per domain into your dataset.
  3. Get your data โ€” open the Output tab and export to JSON, CSV, Excel or XML, or pull it via the Apify API.

๐Ÿ“ฅ Input

Give the Actor at least one entry in domains. Everything else is optional.

Example โ€” audit a portfolio of company domains

{
"domains": ["google.com", "github.com", "stackoverflow.com", "wikipedia.org"],
"maxConcurrency": 10,
"proxyConfiguration": { "useApifyProxy": true }
}

Example โ€” flag broken / misconfigured HTTPS (mix of good & bad hosts)

{
"domains": ["expired.badssl.com", "self-signed.badssl.com", "wrong.host.badssl.com", "example.com"],
"maxConcurrency": 20,
"proxyConfiguration": { "useApifyProxy": true }
}

Example โ€” fast large-list reachability scan

{
"domains": ["shop.example.com", "api.example.com", "cdn.example.com", "mail.example.com", "legacy.example.com"],
"maxConcurrency": 50,
"proxyConfiguration": { "useApifyProxy": true }
}
FieldTypeDescriptionDefault
domainsarrayDomains (or full URLs) to check. Schemes, paths, ports and trailing dots are stripped automatically; duplicates removed. Required.โ€“
maxConcurrencyintegerParallel HTTPS connections. Higher is faster but may overwhelm small servers or trip rate limits.10 (min 1, max 100)
proxyConfigurationobjectApify Proxy settings for the outbound connections. Recommended to avoid IP-based rate limiting.Apify Proxy (datacenter)

Tip: Provide bare domains (example.com) for the cleanest results, but subdomains (api.example.com) and full URLs both work โ€” the Actor normalizes them for you.

๐Ÿ“ค Output

One row per domain, exportable to JSON, CSV, Excel or XML. Here is a trimmed sample record for a healthy host:

{
"domain": "github.com",
"hasTls": "true",
"statusCode": "200",
"latencyMs": "312",
"finalUrl": "https://github.com/",
"error": null,
"checkedAt": "2026-07-06T12:00:00.000Z"
}

And a row for a domain with a certificate problem โ€” note the classified errorType:

{
"domain": "expired.badssl.com",
"hasTls": "true",
"statusCode": null,
"latencyMs": "1084",
"finalUrl": null,
"error": "certificate has expired",
"errorType": "tls_error",
"checkedAt": "2026-07-06T12:00:00.000Z"
}

๐Ÿ’ก Use cases

  • HTTPS uptime & reachability monitoring โ€” run on a schedule against your domain portfolio and flag any host that stops serving over HTTPS (hasTls: "false") before customers notice.
  • Certificate-problem detection โ€” filter by errorType: "tls_error" to surface expired, self-signed, hostname-mismatch and other TLS misconfigurations across all your assets at once.
  • Security & compliance audits โ€” inventory which of your public-facing hosts are HTTPS-healthy and which fail, as evidence for audits and remediation tickets.
  • Migration & cutover checks โ€” after a DNS or infra change, bulk-verify that every domain still resolves over HTTPS and returns the expected statusCode and finalUrl.
  • Vendor & competitor posture checks โ€” quickly see whether a set of third-party domains serve valid HTTPS and how fast they respond (latencyMs).
  • DevSecOps canaries โ€” schedule recurring runs and diff datasets to catch unexpected HTTPS breakages or status-code drift.

๐Ÿ‘ฅ Who uses it

DevOps & SRE teams monitoring HTTPS uptime ยท security engineers running TLS posture audits ยท IT admins managing large domain portfolios ยท penetration testers & bug-bounty hunters triaging hosts ยท compliance analysts collecting HTTPS evidence ยท agencies auditing client infrastructure at scale.

๐Ÿ’ฐ Pricing

This Actor runs on a simple pay-per-result model โ€” you pay for the domains you check, with no separate Apify platform fees to calculate. Try it on the free tier first, then scale up. See the Pricing tab on this page for the current rate.

โ“ Frequently Asked Questions

How do I check SSL/TLS for many domains at once? Paste your full domain list into the Domains field and run the Actor once. It connects to every domain over HTTPS in parallel and returns one row per domain with reachability, status code, latency and any error.

Is this an SSL checker API alternative? Yes. Instead of calling a third-party SSL SaaS or SSL Labs (which imposes strict rate limits), this Actor performs the TLS handshake itself from the Apify runtime โ€” so it works as an unofficial SSL checker API alternative with no API key and no external rate limits.

Can I check SSL/TLS without an API or login? Yes. There is no external account, login or API key required โ€” only an Apify account. The Actor probes publicly reachable hosts over standard HTTPS.

What does hasTls actually mean? It reports whether the host completed a TLS handshake and served content over HTTPS. A host that fails specifically with a certificate/TLS error is still marked hasTls: "true" (TLS is present but broken), while DNS failures, refused connections and timeouts are marked hasTls: "false".

How are errors classified? Every failed row includes an errorType: tls_error (certificate/TLS handshake problem), timeout (host too slow), connection_error (DNS failure or refused connection), or unknown. This lets you separate certificate issues from network issues instantly.

What happens with a domain that has no HTTPS (HTTP-only)? The HTTPS connection fails, and the row is logged with hasTls: "false" and the reason in the error/errorType fields. The run never crashes โ€” every domain always produces a row.

How much data can I get / how many domains can I check? You can check thousands of domains per run. Increase maxConcurrency (up to 100) for large lists; each domain produces exactly one output row.

How do I export SSL check results to CSV or JSON? Run the Actor, then export the resulting dataset as CSV, JSON, Excel or XML from the Apify Console or via the Apify API โ€” one domain per row, ready for spreadsheet filtering.

Is it legal to run bulk SSL checks? The Actor only performs standard HTTPS connections to publicly reachable hosts โ€” the same thing any web browser does. You are responsible for scanning only domains you are authorized to test and for complying with applicable terms and laws.

๐Ÿ”— More website & DevSecOps tools by logiover

Building an infrastructure-audit or recon pipeline? Pair this SSL checker with the rest of the website-intelligence suite:

ToolWhat it does
Bulk HTTP Security HeadersScan CSP, HSTS, X-Frame-Options and score security posture of any URL
Bulk DNS Records LookupResolve A, AAAA, MX, TXT, NS, CNAME, SOA, CAA via DNS-over-HTTPS
Bulk URL Status CheckerHTTP status codes and redirect chains for large URL lists
Bulk WHOIS / RDAP LookupRegistrar, creation/expiry dates and nameservers per domain
Bulk Email Deliverability CheckerMX, SPF, DKIM, DMARC and BIMI audit per domain
Bulk Email VerifierValidate email addresses in bulk (syntax, MX, deliverability)
Subdomain FinderDiscover subdomains via Certificate Transparency logs
Certificate Transparency MonitorWatch CT logs for newly issued certificates on your domains
Website Tech Stack DetectorFingerprint frameworks, servers and analytics on any site
Website SEO Audit CrawlerCrawl a site and flag on-page SEO and technical issues
Bulk URL UnshortenerExpand shortened URLs and trace their full redirect chains
Website Change MonitorDetect and diff changes on any web page over time

๐Ÿ‘‰ Browse all logiover scrapers on Apify Store โ€” 180+ actors across real estate, jobs, crypto, social media & B2B data.

โฐ Scheduling & integration

Schedule this Actor on Apify to monitor your HTTPS estate daily or hourly. Export results to JSON, CSV or Excel, sync to Google Sheets, or push to your database, BI tools and webhooks through the Apify API. Connect it to Make, n8n or Zapier to build automated alerting when a domain's hasTls flips to "false" or a certificate error appears.

โญ Support & feedback

Found a bug or need an extra field? Open an issue on the Issues tab โ€” response is usually fast. If this Actor saves you time, a โ˜…โ˜…โ˜…โ˜…โ˜… review on the Store page genuinely helps and is hugely appreciated. ๐Ÿ™

This Actor performs only standard HTTPS connections to publicly reachable hosts and returns technical reachability metadata. It is intended for legitimate monitoring, security-audit and research use. You are responsible for testing only domains you are authorized to scan and for complying with applicable terms of service and local laws.


๐Ÿ“ Changelog

2026-07-06

  • โœจ README overhaul: corrected the output field reference to match the actual TLS/HTTPS reachability fields (hasTls, statusCode, latencyMs, finalUrl, errorType), added ready-to-run example scenarios, a website/DevSecOps cross-promo grid, and a clearer quick-start.

2026-07-01

  • Maintenance pass: re-verified end-to-end on live data and confirmed successful runs within the 5-minute quality window on the default input.
  • Sharpened Store metadata (SEO title & description) and expanded the FAQ with high-intent, long-tail questions for easier discovery in Google and Apify Store search.
  • Added ready-to-run example tasks that cover common real-world use cases.

2026-06-24

  • Initial release โ€” bulk SSL/TLS + HTTPS reachability inspection (TLS handshake, status code, latency, redirect resolution, classified error types), no API key, CSV/JSON export.