Free pentest tools for your security analysis

If I had eight hours to chop down a company, I'd spend six hours sharpening my penetration testing tools.

Information Gathering

A suite of tools to discover and enumerate target assets - scanning web components, DNS configurations, certificate transparencies and subdomains to map out your attack surface.

Scan a website and search for known components
WebCompScan
Check a domain for its DNS configuration
DNSCheck
Search for domains in the Certificate Transparency Log
CertWatch
Show your IP address
WhatIsMyIP
Search for subdomains of a domain
SubDomainFinder
Lookup for well known TCP/UDP ports
WellKnownPorts
Lookup possible Subnets for a IP
SubnetCalc
Scan a given website with automatic zaproxy
ZAPScanner

Security Settings

Utilities for validating server and mail configurations - inspecting HTTP security headers, SPF/DKIM records to ensure best-practice security configuration.

Check HTTP header configuration
HTTPHeaderCheck
Verify mail delivery for SPF, DKIM and TLS
MailCheck
Validate the SPF record for a sender
SPFValidator

Cryptography

Check the strength and correctness of your cryptographic protocols, with SSL/TLS scanners and SSH cipher analysis to spot weak or outdated algorithms.

Check SSL/TLS configuration
SSLCheck
Check a SSH server for used ciphers and more
SSHCheck

Passwords

Tools for password auditing - reverse-hash lookups for common hash types and real-time password list checks to identify weak or compromised credentials.

Get passwords for SHA1, MD5 or NTLM hashes
HashLookup
Check a password against password lists
PasswordListCheck
Check password complexity
Password Quality Check

Risk Assessment

CVSS 4.0 calculators and vector decoders that quantify the severity of vulnerabilities, helping you prioritize and remediate based on standardized scoring.

Calculate the CVSS 4.0 Score
CVSS4Calulator
Calculate the CVSS 4.0 Score by CVSS vector
CVSS4VectorDecoder

Strengthen your system with targeted security checks

Free Security Tools

Powerful, no-cost solutions for comprehensive analysis.

Boost Your Awareness

Gain valuable insights while engaging with our tools.

Quick results

Scan and analyze your security in seconds.

PDF Download

Get your results as a PDF document.

binsec - Leading Penetration Testing Experts Company in Germany

binsec GmbH is a leading penetration testing company in Germany, providing professional pentesting services for businesses across Europe. With over 10 years of experience in penetration testing, its certified senior penetration testers identify critical vulnerabilities in web applications, APIs, mobile apps, medical devices, and complex IT infrastructures. The company's services also include advanced phishing simulations, physical security assessments, and comprehensive red team assessments.

The company's penetration testing services combine advanced security tools with deep manual testing to detect real world attack vectors that automated scanners often miss. binsec follows internationally recognized standards such as OWASP, OSSTMM, and PTES, and applies a structured penetration testing methodology powered by its proprietary PTDoc framework. PTDoc ensures a consistent and transparent penetration testing process across all engagements, from planning and execution to validation, risk assessment, and professional reporting. This methodology enables binsec to deliver high quality pentest reports with clearly prioritized findings, technical details, and actionable remediation guidance.

Company

binsec systems GmbH
Clemensstraße 6-8
60487 Frankfurt am Main
Germany

Contact

info@binsec.systems
+49 698700111-0

Legal notice

Director: Patrick Sauer, Florian Zavatzki
Registration: Frankfurt am Main, HRB 118471
Turnover Tax Identification No.: DE 328 921 182

© 2026 All rights reserved by binsec systems GmbH.

Privacy Notice

© 2026 All rights reserved by binsec systems GmbH.

Privacy Notice