CertAlert combines SSL certificate discovery, inspection, reporting, and much more in one easy-to-use tool

Get Free Trial | CertAlert FAQ » | Learn More »


The first step to managing your SSL certificates is to identify the certificates you have deployed. To do this, CertAlert carries out network discovery to find and evaluate SSL certificates on your network.

Expiration Monitoring

CertAlert monitors the certificates it finds; it can be configured to send timely alerts to one or more recipients when certificates need renewing.


CertAlert sends reports that identify certificates that may not comply with your security policy due to: weak algorithms, incorrect key size, issued from a rogue CA, being self-signed, incorrect validity etc. CertAlert can be configured to email reports to multiple contacts.


Below are just a few examples of the feedback we get from users of CertAlert.

"Wonderful tool, very easy to use and configure"
-- Didier Derck
(Toyota Europe)

"Works very well and helps us keep a close eye on all SSL renewals"
-- Jacob Colton
(Catalyst2 Web Hosting)

"Your assistance and software is greatly appreciated"
-- Chris Goosen CIO
( H&K )

"...works like a charm!! Exactly what we are looking for!"
-- Tashiel Bhairo

"Just wanted to say, I love your Cert Alert application. It’s great!"
-- Matt Harman (System Administrator)

Easy to use

You can setup CertAlert in under two minutes.

  1. Unzip the certalert zip file to a folder
  2. Open a command prompt in the folder
  3. Type CertAlert.exe and press return

CertAlert is pre-configured to check some well-known websites. You can easily change the websites/hosts it scans by editing the serverlist.txt file or by specifying one or more IP ranges in the CertAlert.exe.config file. See our Getting Started page and the CertAlert README.txt for lots more details about CertAlert's configuration.

Running CertAlert

CertAlert can be run automatically, be scripted, or run from a command prompt as show below.