- check target for any possible/existing cipher (expected in May 2014)
- review the code (technically, note that it is a testing and not a security tool)
- add check for certificate chains
- add proper metric for risks rating
- implement client certificates
- implement other protocols (STARTTLS, IMAPS, POPS, ...)
- encourage other admins and developers to fix their SSL issues ;-)"