Many Internet users believe that https websites are secured and hard to break. This is not the case if the link (channel) established between client and server is using SSL2.0 or weak version of SSL. Even though it is difficult to exploit in real practice, an hacker can do man-in-the-middle attacks or decrypt communication channel between client and server.
Tools to detect the version of SSL supported in the web server:
1. THCSSLCheck – Very simple and easy to use Windows tool.
2. SSLDigger – Nice GUI Tool requires Windows .NET Framework.