Join GitHub today
GitHub is home to over 20 million developers working together to host and review code, manage projects, and build software together.
Python
Shell
Fetching latest commit…
Cannot retrieve the latest commit at this time.
| Failed to load latest commit information. | |||
|
checks | ||
|
|
tests | ||
|
|
.gitignore | ||
|
|
LICENSE | ||
|
|
README | ||
|
|
__init__.py | ||
|
|
check.py | ||
|
|
cli.py | ||
|
|
color.py | ||
|
|
common.py | ||
|
|
config.py | ||
|
|
domainscan.py | ||
|
|
err.py | ||
|
|
hostscan.py | ||
|
|
localscan.py | ||
|
|
log.py | ||
|
|
runtests.sh | ||
|
|
scanner.py | ||
README
Scrutinize is an extensible misconfiguration scanner--not a vulnerability scanner, use Metasploit for that--written using Twisted. It checks for common misconfigurations such as allowing DNS Zone Transfer for your domain, not having a PTR record, or allowing read access to your configuration files. Usage examples: * python domainscan.py domain.com * python domainscan.py domain1.com domain2.com [...] * python hostscan.py host.domain.com * python hostscan.py host1.domain.com host2.domain.com [...] More information: * python domainscan.py -h * python hostscan.py -h To improve performance, increase the throttle limit with the -t switch, or set throttle in config.py. If you experience excessive connection timeouts, lower it. Extending: Write a module in checks/, then add that to the top of either hostscan.py or domainscan.py. (Improving this process is at the top of my to-do list.)