Free Tools

Security Toolkit

Real working tools — no sign-up required for free tiers. Pro tools unlock deeper scans, history, and PDF reports for registered members.

🔒
SSL/TLS Certificate Checker
Full SSL Labs analysis — certificate validity, TLS versions, vulnerabilities, HSTS, forward secrecy and grade A–F.
Free
Note: SSL Labs analysis takes 60–90 seconds for a fresh scan. Results are cached for repeated checks.
Initialising…
📋
HTTP Security Headers Analyser
Checks your site's security headers — CSP, HSTS, X-Frame-Options, X-Content-Type-Options, Referrer-Policy and more.
Free
How it works: Uses a public CORS proxy to fetch your site's response headers directly in the browser.
Fetching…
Headers
🔍
CMS & Tech Stack Detector
Identifies the CMS, framework, and server technology powering a website — WordPress, Shopify, Wix, Laravel, Next.js, Nginx, Apache and more.
Free
Detecting…
Tech Stack
↪️
Open Redirect Tester
Tests common open redirect parameters on a domain. Open redirects can be exploited in phishing attacks and OAuth flows.
Free
What is an open redirect? When a site accepts a URL parameter (like ?redirect=) and forwards users to it without validation — attackers exploit this for phishing.
Testing parameters…
Redirect Test
🔐

Port scanning is a Pro feature. Upgrade to run limited port checks on your domains.

Upgrade to Pro →
🌐
Port Scanner
Checks common ports (80, 443, 22, 21, 3306, 8080, etc.) to identify exposed services on your server.
Pro
🔐

OWASP scanning is a Pro feature. Upgrade to access deep security checks.

Upgrade to Pro →
OWASP Top 10 Basic Scan
Checks for common OWASP Top 10 vulnerabilities — access control, cryptography, injection, misconfiguration and more.
Pro
Note: This is an automated surface-level scan. It checks indicators but does not replace a full manual penetration test.
Initialising…
🔐

Subdomain enumeration is a Pro feature. Upgrade to discover all your subdomains.

Upgrade to Pro →
Subdomain Enumerator
Discovers all subdomains for your domain — find forgotten services, staging environments, and exposed infrastructure before attackers do.
Pro
Initialising…
🔐

PDF reports are a Pro feature. Upgrade to generate branded security reports.

Upgrade to Pro →
PDF Security Report
Generates a branded EX-N security report from your scan history — includes all findings, grades, dates, and remediation recommendations.
Pro
How it works: Run scans using the tools above, then click below to generate a PDF report from your scan history. You need at least one scan saved.