testssl

testssl.sh is a free, open-source command-line tool written in bash that performs comprehensive SSL/TLS security testing by checking server configurations on any port for supported ciphers, protocols, cryptographic flaws, and vulnerabilities including Heartbleed, POODLE, FREAK, LOGJAM, DROWN, and other TLS-related issues across web servers, SMTP, IMAP, POP3, FTP, and STARTTLS-enabled services. The tool provides detailed security assessments with color-coded output, certificate validation, forward secrecy checks, and protocol analysis without requiring installation or external dependencies, delivering complete privacy as results remain local to the tester while integrating into security workflows through multiple output formats including JSON and CSV for automated vulnerability management throughout the security testing lifecycle.