One thing which I have noticed during the testing is that there are a number of vulnerabilities which occur due to TLS version and cipher suite used. So, I have added a few new tricks in my arsenal to hunt for SSL/TLS which are being used.
1 . Using SSLSCAN
2. Using NMAP scripting engine
we will discuss both of them one by one
First: SSL scan
Command: SSL scan
SECOND : NMAP NSE
command : nmap –script ssl-enum-ciphers.nse target