Could anyone please can explain the differences between “port 443/tcp” and “port 443/tcp over SSL” in the scan result?
I hope someone knows about it.
When a vulnerability has an "over SSL" tag, then the vulnerability test required and negotiated SSL specifically. When only the port was listed, then the vulnerability test did not require explicit negotiation of SSL.
Hope this helps,
Retrieving data ...