diff --git a/ssl/mismatched-ssl-certificate.yaml b/ssl/mismatched-ssl-certificate.yaml
new file mode 100644
index 0000000000..469aba2745
--- /dev/null
+++ b/ssl/mismatched-ssl-certificate.yaml
@@ -0,0 +1,24 @@
+id: mismatched-ssl-certificate
+
+info:
+  name: Mismatched SSL Certificate
+  author: pdteam
+  severity: low
+  reference:
+    - https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/ssl-certificate-name-hostname-mismatch/
+  tags: ssl,mismatched,tls
+
+ssl:
+  - address: "{{Host}}:{{Port}}"
+
+    matchers:
+      - type: dsl
+        dsl:
+          - "mismatched == true"
+          - "ip != host"
+        condition: and
+
+    extractors:
+      - type: dsl
+        dsl:
+          - '"CN: " + subject_cn'
\ No newline at end of file