testssl.sh
testssl.sh testssl.sh is the bash-powered TLS scanner that probes endpoints for cipher suites, protocol versions, and cert chain issues, grading security with color-coded outputs for quick hardening advice. Clone and run on hosts for detailed reports on HSTS preload or weak curves, scripting for batch audits in your toolkit. Open-source from drwetter, it's the protocol proctor for pentesters templating SSL configs against best practices.
Explore →sslyze
sslyze sslyze is the Python CLI for aggressive TLS analysis, scanning for vulnerable ciphers, heartbleed, and cert validity with JSON exports for automated pipeline integrations. Fire it at domains with --certinfo for chain details or --heartbleed for legacy checks, customizing plugins for focused probes. Open-source from nabla-c0d3, it's the cipher sleuth for security pros dissecting handshake weaknesses.
Explore →sslscan
sslscan sslscan is the lightweight C tool for enumerating supported SSL/TLS ciphers and protocols, outputting sorted lists by strength for identifying downgrade risks in endpoints. Compile from source and run on ports for quick scans, piping to grep for preferred suites. Open-source from rbsec, it's the suite surveyor for analysts mapping supported configs in recon phases.
Explore →nmap-nse-ssl-enum-ciphers
nmap-nse-ssl-enum-ciphers nmap's ssl-enum-ciphers NSE script fuzzes TLS handshakes to list supported ciphers by strength, flagging weak ones like RC4 for protocol downgrade assessments. Integrate into nmap scans with --script ssl-enum-ciphers, scripting outputs for vuln reports. Open-source from nmap, it's the cipher cartographer for network mappers charting TLS terrains.
Explore →tls-map
tls-map tls-map is the Python fuzzer that probes TLS versions and extensions, mapping supported configs for downgrade or extension abuse vectors in server testing. Run its script on targets for detailed extension lists, chaining with sslyze for comprehensive audits. Open-source from community, it's the extension explorer for pentesters surveying TLS feature landscapes.
Explore →cryptonark
cryptonark cryptonark is the network crypto scanner that analyzes TLS handshakes for weak params, elliptic curves, and PFS support with pcap parsing for offline reviews. Capture traffic, run its C++ binary for cipher breakdowns, and export for SIEM feeds. Open-source from ITA, it's the handshake historian for forensics teams reconstructing SSL sessions from captures.
Explore →ssltest
ssltest ssltest is the simple Go tool for basic TLS config checks, verifying cert chains and protocols with CLI options for custom ciphers or OCSP stapling tests. Point it at endpoints for pass/fail verdicts, scripting for CI gates on deployments. Open-source from community, it's the config confessor for devs validating SSL setups pre-prod.
Explore →tlslite-ng
tlslite-ng tlslite-ng is the Python TLS lib with analysis hooks for dissecting handshakes, extracting session params and extensions for custom protocol audits. Implement scanners with its primitives, logging cipher negotiations for reports. Open-source from tomweber, it's the TLS tinkerer for researchers prototyping analysis tools from the ground up.
Explore →ssl-config-analyzer
ssl-config-analyzer ssl-config-analyzer is the YAML-templated scanner for TLS best practices, checking HSTS headers and cipher orders against Mozilla configs for compliance scoring. Run via Python on sites for graded outputs, customizing rules for enterprise standards. Open-source from community, it's the config comparator for security teams benchmarking SSL postures.
Explore →testssl-server