O-Saft

LSE top 100LSE top 100O-Saft (41)O-Saft (41)

Tool and Usage

Project details

License
GPLv2
Programming language
Perl
Author
Achim Hoffmann
Latest release
22.2.22
Latest release date

Project health

89
This score is calculated by different factors, like project age, last release date, etc.

Introduction

O-Saft is the abbreviation for OWASP SSL advanced forensic tool.

Why this tool?

O-Saft is a command-line tool and can be used offline and in closed environments. There is also a graphical user interface available (based on Tcl/Tk). It can even be turned into an online CGI-tool. With just basic parameters it can provide useful information about an SSL configuration. With limited tuning of the tool, it can perform more specialized tests.

Usage and audience

O-Saft is commonly used for information gathering, penetration testing, security assessment, vulnerability scanning, or web application analysis. Target users for this tool are pentesters, security professionals, and system administrators.

Features

  • Command line interface
  • Customization and additions are possible
  • Graphical user interface
  • Integration with continuous integration/delivery (CI/CD)
  • Tool can be used in offline environment
  • Web interface

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

  • + The source code of this software is available

Author and Maintainers

O-Saft is under development by Achim Hoffmann.

Installation

Supported operating systems

O-Saft is known to work on Linux.

O-Saft alternatives

Similar tools to O-Saft:

84

SSLyze

SSLyze provides a library for scanning services that use SSL/TLS for encrypted communications. It can be used to test their implementation.

56

MassBleed

MassBleed is a SSL vulnerability scanner to check for several known vulnerabilities and attacks like DROWN, POODLE, and ShellShock.

63

SSLMap

SSLMap is a TLS/SSL cipher suite scanner. It provides a way to detect weak ciphers enabled on SSL endpoints and can be used during security assessments.

All O-Saft alternatives

This tool page was updated at . Found an improvement? Help the community by submitting an update.

Related tool information