Misconfiguration scanner
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
checks
tests
.gitignore
LICENSE
README
__init__.py
check.py
cli.py
color.py
common.py
config.py
domainscan.py
err.py
hostscan.py
localscan.py
log.py
runtests.sh
scanner.py

README

Scrutinize is an extensible misconfiguration scanner--not a vulnerability scanner,
use Metasploit for that--written using Twisted. It checks for common misconfigurations
such as allowing DNS Zone Transfer for your domain, not having a PTR record, or
allowing read access to your configuration files.

Usage examples:
  * python domainscan.py domain.com
  * python domainscan.py domain1.com domain2.com [...]
  * python hostscan.py host.domain.com
  * python hostscan.py host1.domain.com host2.domain.com [...]

More information:
  * python domainscan.py -h
  * python hostscan.py -h

  To improve performance, increase the throttle limit with the -t switch, or
  set throttle in config.py. If you experience excessive connection timeouts,
  lower it.

Extending:
  Write a module in checks/, then add that to the top of either hostscan.py or
  domainscan.py. (Improving this process is at the top of my to-do list.)