Back to All Commands
Most Viewed
Favorites
Recently Viewed

openssl

Security 1 Key Generation 1 Certificate Management 3 Keystore Management 1 Ssl/tls Testing 2 Encryption 1 Random Generation 1 Hashing 1

openssl Commands

Security

Check SSL Certificate

Check SSL certificate validity

openssl x509 -in certificate.crt -text -noout

Key Generation

openssl genrsa

Generate RSA private key.

rsa private-key generation 

openssl genrsa
Examples:
Generate 2048-bit RSA private key 
openssl genrsa -out private.key 2048
Generate encrypted private key 
openssl genrsa -des3 -out private.key 2048

Certificate Management

openssl req

Generate certificate signing request (CSR).

csr certificate request 

openssl req
Examples:
Generate CSR with private key 
openssl req -new -key private.key -out request.csr
Generate CSR with config file 
openssl req -new -key private.key -out request.csr -config openssl.cnf
openssl x509

Certificate display and signing utility.

certificate x509 display 

openssl x509
Examples:
View certificate details 
openssl x509 -in certificate.crt -text -noout
Check certificate dates 
openssl x509 -in certificate.crt -dates -noout
openssl verify

Verify certificate chain.

verify certificate chain 

openssl verify
Examples:
Verify certificate 
openssl verify certificate.crt
Verify with CA bundle 
openssl verify -CAfile ca-bundle.crt certificate.crt

Keystore Management

openssl pkcs12

PKCS#12 file utility for creating and managing keystores.

pkcs12 keystore p12 

openssl pkcs12
Examples:
Create PKCS#12 keystore 
openssl pkcs12 -export -in certificate.crt -inkey private.key -out keystore.p12
View PKCS#12 contents 
openssl pkcs12 -in keystore.p12 -info -noout

Ssl/tls Testing

openssl s_client

SSL/TLS client program for testing connections.

ssl tls client testing 

openssl s_client
Examples:
Test SSL connection 
openssl s_client -connect example.com:443
Test with SNI 
openssl s_client -connect example.com:443 -servername example.com
Show certificate chain 
openssl s_client -connect example.com:443 -showcerts
openssl s_server

SSL/TLS server program for testing.

ssl tls server testing 

openssl s_server
Examples:
Start SSL server 
openssl s_server -cert server.crt -key server.key -port 8443

Encryption

openssl enc

Encrypt or decrypt files using various algorithms.

encryption decryption files 

openssl enc
Examples:
Encrypt file with AES 
openssl enc -aes-256-cbc -in file.txt -out file.enc
Decrypt file 
openssl enc -aes-256-cbc -d -in file.enc -out file.txt

Random Generation

openssl rand

Generate random bytes.

random bytes generation 

openssl rand
Examples:
Generate random bytes 
openssl rand -out random.bin 32
Generate random hex string 
openssl rand -hex 32
Generate random base64 
openssl rand -base64 32

Hashing

openssl dgst

Generate message digest (hash) of files.

hash digest sha256 md5 

openssl dgst
Examples:
Generate SHA256 hash 
openssl dgst -sha256 file.txt
Generate MD5 hash 
openssl dgst -md5 file.txt