Post-Quantum TLS 1.3 + hybrid ML-KEM checker by @singe

QuantumHello

Enter a hostname or HTTPS URL to check for post-quantum encryption support. The checker proves support by negotiating a supported ML-KEM hybrid key exchange in TLS 1.3 handshakes, including the wider ML-KEM hybrid list now supported by Go.

Examples: cloudflare.com, https://google.com, example.com:443

Results

The results will appear here. If the target is reachable, you’ll see TLS 1.3, cipher suite, and whether the checked address negotiated a supported ML-KEM hybrid.

API usage

Use the JSON endpoint for scriptable checks.

Request:

curl 'https://quantumhello.xyz/api/check?url=cloudflare.com'

Response:

{
  "status": "supported",
  "checked_ip": "104.16.124.96",
  "control_probe": {
    "offered_curves": ["X25519MLKEM768", "SecP256r1MLKEM768", "SecP384r1MLKEM1024", "X25519", "CurveP256", "CurveP384", "CurveP521"],
    "negotiated_curve": "SecP256r1MLKEM768"
  },
  "pq_probe": {
    "offered_curves": ["X25519MLKEM768", "SecP256r1MLKEM768", "SecP384r1MLKEM1024"],
    "negotiated_curve": "SecP384r1MLKEM1024"
  }
}

Replace the host with any HTTPS hostname you want to check. Support means the checked address negotiated a supported ML-KEM hybrid, not necessarily the same one every time.