We previously reported that Foundstone released a tool, SiteDigger, that helps you audit your Web site for potential vulnerabilities. The company recently released a new Web audit tool, SSLDigger, that helps you audit Secure Sockets Layer (SSL) ciphers that are enabled on your Web site.

A spokesperson for Foundstone said that, "SSLDigger automatically tests for 26 SSL ciphers, classifying them into four security categories between None and Excellent. It then provides an overall grade for the Web site’s encryption.
SSLDigger helps users ensure compliance with regulatory and industry encryption standards, including Health Insurance Portability and Accountability Act (HIPAA)  and VISA’s Cardholder Information Security Program (CISP). It also provides limited support for Server Gated Cryptography (SGC), which is particularly useful for financial services institutions with customers across the globe."

You can download a copy of
SSLDigger at the Foundstone Web site. To use the tool you'll need to install the Microsoft .NET Framework which is available via Windows Update or by direct download.