$ ls /tools
Free tools, no signup.
The same kind of quick checks we run at the start of every engagement. Free to use, nothing stored, no email required. Not a substitute for a real audit — but a good place to start.
Domain Security Checker
Checks a domain's SPF, DMARC, and SSL certificate status.
HTTP Security Headers Checker
Checks whether a site sends HSTS, CSP, and other browser security headers.
Uptime & Response Checker
Checks whether a site is up right now and how fast it responds.
Blacklist Checker
Checks whether a domain's IP is listed on major spam blocklists.
Spot the Phish
Five real-looking emails. Guess which ones are fake.
Security Readiness Self-Assessment
Ten questions, a rough score, and what to fix first.
Password Strength Estimator
Estimates crack time. Runs entirely in your browser — nothing is sent anywhere.
These tools check a few things. We check everything.
Free tools are a starting point, not a substitute for a real audit or penetration test.