OpenSSL Swiss Army Knife

1. SSL new key and ceritificate request generation
openssl req -new -newkey rsa:2048 -nodes -keyout www.example.tld.key -out www.example.tld.crq

2. Check SSL private key
openssl rsa -in www.example.tld.key -check -noout

3. Check SSL certificate request
openssl req -in www.example.tld.crq -verify -noout

4. Remove password from a private key
openssl rsa -in www.example.tld.key -out www1.example.tld.key

5. Encrypt file
openssl aes-256-cbc -a -salt -in infile -out outfile.enc

6. Decrypt file
openssl aes-256-cbc -d -a -salt -in infile.enc -out outfile

7. Strong random password generator
openssl rand -base64 12

8. Check TLS/SSL connection
openssl s_client -connect www.example.tld:443