testssl.sh
testssl.sh is a free command line tool that checks a server's service on any port for the support of TLS/SSL ciphers, protocols, and cryptographic flaws. It provides clear and machine-readable output, works on various operating systems, and does not require additional installations. The tool offers flexibility to test any SSL/TLS enabled service, not limited to web servers, and ensures reliability, privacy, and freedom as it is open source under GPLv2 license.
FEATURES
ALTERNATIVES
A vulnerability management tool for macOS that monitors and detects vulnerabilities in over 100 apps.
A search engine for the Internet of Things (IoT) that provides real-time information about connected devices.
A tool for detecting and exploiting Android application vulnerabilities
Fuzzapi is a Rails application with a user-friendly UI for API_Fuzzer gem and Docker setup.
Dnscan is a DNS reconnaissance tool that performs DNS scans, DNS cache snooping, and DNS amplification attack detection.
A vulnerable web site in NodeJS for testing security source code analyzers.
An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.
Automate software supply chain security by blocking malicious open source components
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.