testssl.sh
testssl.sh is a free command line tool that checks a server's service on any port for the support of TLS/SSL ciphers, protocols, and cryptographic flaws. It provides clear and machine-readable output, works on various operating systems, and does not require additional installations. The tool offers flexibility to test any SSL/TLS enabled service, not limited to web servers, and ensures reliability, privacy, and freedom as it is open source under GPLv2 license.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Patch-level verification tool for bundler to check for vulnerable gems and insecure sources.
WordPress security scanner for identifying vulnerabilities in WordPress websites.
Fuzzapi is a Rails application with a user-friendly UI for API_Fuzzer gem and Docker setup.
A guide to brute forcing DVWA on the high security level with anti-CSRF tokens
A free and open-source deliberately insecure web application for security enthusiasts, developers, and students to discover and prevent web vulnerabilities.
A centralized vulnerability lifecycle management platform that tracks security issues from discovery to closure with real-time status updates.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.