testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
It is an open-source Python-driven tool aimed at penetration testing around Social-Engineering.
Online tool to test webserver allowed http methods
Linux distros for vulnerablity exploration training
Small tool to receive SSL certificates from databases
P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any way.
w3af, is a Web Application Attack and Audit Framework. The w3af core and it's plugins are fully written in python. The project has more than 130 plugins, which check for SQL injection, cross site scripting (xss), local and remote file inclusion and much
Wie verwalten bestimmte Programme die Userpasswörter und Tools zum auslesen