CertAlert continuously monitors TLS certificates across your infrastructure by running on a schedule or on demand, alerting you before expiry, misconfiguration, or trust failures cause outages.
Download Free TrialEnterprise-grade certificate monitoring and discovery — trusted since 2010.
A simple three-step model: scan your environment, detect certificate risks, and produce actionable output.
Click to expand
CertAlert performs agentless certificate discovery across IPv4 and IPv6, scanning hostnames, IP addresses, and network ranges to locate all TLS-enabled services. This includes non-standard ports, forgotten endpoints, shadow IT, and services with missing or incorrectly configured TLS.
CertAlert tracks certificate lifetimes on a schedule you define and raises alerts as expiry thresholds are crossed. Fine-grained control over warning periods and notification frequency ensures early visibility without alert fatigue.
CertAlert produces self-contained HTML, PDF, and CSV reports that surface certificates requiring action, with clear status indicators and supporting detail. HTML reports can be shared or hosted internally for ongoing visibility, while reports can also be generated on demand or automatically emailed on a schedule.
Avoid costly service interruptions and emergency firefighting
Identify weak certificates before they become security risks
Automated reporting for audit and compliance requirements
CertAlert delivers clear, actionable email alerts when certificates need attention. Each alert includes the affected hosts, ports, and specific issues detected — so you know exactly what needs fixing.
17+ configurable alert conditions — choose exactly which issues trigger notifications. Set cooldown periods to prevent alert fatigue, and use separate recipient lists for alerts and scheduled reports.
Click to expand
Receive periodic summary reports with a complete breakdown of certificate health across your infrastructure. Reports are sent on a configurable schedule — daily, weekly, or at any interval you choose.
Click to expand
"Wonderful tool, very easy to use and configure"
Security Engineer, Toyota Europe
"Works very well and helps us keep a close eye on all SSL renewals"
Director, Catalyst2
"Your assistance and software is greatly appreciated"
CIO, H&K
"Just wanted to say, I love your Cert Alert application. It's great!"
System Administrator, Centerstone
Download CertAlert and extract it to any directory.
Open a terminal in that directory.
Run CertAlert scan — or specify a hostname for a quick check.
See the Changelog for full release details.
CertAlert can be run interactively, scripted, or scheduled. The console provides a clear, real-time summary of scan results with colour-coded status indicators.
Windows
Linux
CertAlert runs locally within your secure environment — no certificate data leaves your network unless you explicitly configure external email.
For over 15 years, CertAlert has helped organisations across Europe and North America prevent certificate-related outages.
5-minute setup. Clear visibility. Fewer surprises.
