We had a pen test done recently, and so I've been fixing some of our external web servers, per their recommendations (i.e., turning off this protocol, enabling that one, etc).
I'm curious what sites you might use to scan for vulnerabilities. I've been using: https://www.htbridge.com/ssl/ https://www.ssllabs.com/ssltest/ And both the web servers I've been fixing now pass with A or A+ (yay! for A - LOL). Any other sites I should be trying? What do you use? Thanks
