Sslscan

sslscan is an open-source command-line SSL/TLS security testing tool that queries SSL/TLS-enabled services including HTTPS, SMTP, IMAP, POP3, and FTP to enumerate supported protocol versions, cipher suites, key exchange algorithms, signature algorithms, and certificate details while testing for known vulnerabilities such as Heartbleed, renegotiation weaknesses, and TLS compression. The tool provides comprehensive security assessments with color-coded output highlighting insecure configurations including weak ciphers (NULL, RC4, 3DES), deprecated protocols (SSLv2, SSLv3), and compliance violations, delivering results in both human-readable text and XML formats for integration into security testing workflows and automated vulnerability management systems.