Skip to content

Tools

Updated May 24, 2025

Web

Sitemap Generator

For Google to quickly and easily identify all of the pages of your website, you will want to make an XML sitemap for Google and other search engines access. An XML sitemap is a plain text XML file which lists all the most important pages across your website. XML sitemaps can be submitted to Google, Bing, and other major search engines to help them discover, crawl, and index your website more easily and effectively. The more easily search engines can crawl your website, the more likely your rankings are to improve. Learn more about how Google crawls and indexes your website here.

https://www.sureoak.com/seo-tools/google-xml-sitemap-generator

GDPR Compliance

The GDPR applies to organizations, companies, individuals, corporations, public authorities and other entities - including small businesses, charities and nonprofit organizations - that are either based in the EU, offer goods or services (even for free) to people in the EU, or that monitor the behaviour of people in the EU, either directly or as a third party. This service allows you to create a privacy & cookie policy in minutes, set-up your cookie banner with prior blocking, easily manage consent, maintain compliant processing records and more.

https://www.iubenda.com/en/gdpr

SSL / TLS

Testing the quality of SSL/TLS certificates

This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.

https://www.ssllabs.com/ssltest/

Test to show the SSL/TLS capabilities of a browser

https://clienttest.ssllabs.com:8443/ssltest/viewMyClient.html

IPv6

Website IPv6 accessibility validator

https://ipv6-test.com/validate.php

Service that checks your IPv6 and IPv4 connectivity and speed

https://ipv6-test.com/

Check HSTS preload status and eligibility This form is used to submit domains for inclusion in Chrome's HTTP Strict Transport Security (HSTS) preload list. This is a list of sites that are hardcoded into Chrome as being HTTPS only. Most major browsers (Chrome, Firefox, Opera, Safari, IE 11 and Edge) also have HSTS preload lists based on the Chrome list. (See the HSTS compatibility matrix.)

https://hstspreload.org/

WordPress Security Scan

Online WordPress Security Scanner to test vulnerabilities of a WordPress installation. Checks include application security, WordPress plugins, hosting environment, and web server.

https://hackertarget.com/wordpress-security-scan/

Nmap Online Port Scanner

Use Nmap to find open ports on Internet facing systems with this online port scanner.

https://hackertarget.com/nmap-online-port-scanner/

OWASP Web Security Testing Guide

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals. The WSTG is a comprehensive guide to testing the security of web applications and web services. Created by the collaborative efforts of cybersecurity professionals and dedicated volunteers, the WSTG provides a framework of best practices used by penetration testers and organizations all over the world.

OWASP testing guide

https://owasp.org/www-project-web-security-testing-guide/

OWASP web app scanner for most platforms

https://www.zaproxy.org/download/

Is the site legit?

https://www.islegitsite.com/

Cybersecurity

CVE Catalog

The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities.

https://www.cve.org/

Search the list

http://cve.mitre.org/cve/search_cve_list.html

Others

Minimum Viable Secure Product

A minimum security baseline for enterprise-ready products and services.

https://mvsp.dev/

Mail servers/service testing toolbox

Test MX records, SPF1, DKIM and DMARC settings

https://mxtoolbox.com/

Get the details of a connection to a website

Used in a Terminal.

curl -svILk https://www.mobilitydatabase.org