Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign up
Misconfiguration scanner
https://patrickmn.com/projects/scruti…
Fetching latest commit…
Cannot retrieve the latest commit at this time.
| Type | Name | Latest commit message | Commit time |
|---|---|---|---|
| Failed to load latest commit information. | |||
|
checks | ||
|
|
tests | ||
|
|
.gitignore | ||
|
|
LICENSE | ||
|
|
README | ||
|
|
__init__.py | ||
|
|
check.py | ||
|
|
cli.py | ||
|
|
color.py | ||
|
|
common.py | ||
|
|
config.py | ||
|
|
domainscan.py | ||
|
|
err.py | ||
|
|
hostscan.py | ||
|
|
localscan.py | ||
|
|
log.py | ||
|
|
runtests.sh | ||
|
|
scanner.py | ||
README
Scrutinize is an extensible misconfiguration scanner--not a vulnerability scanner, use Metasploit for that--written using Twisted. It checks for common misconfigurations such as allowing DNS Zone Transfer for your domain, not having a PTR record, or allowing read access to your configuration files. Usage examples: * python domainscan.py domain.com * python domainscan.py domain1.com domain2.com [...] * python hostscan.py host.domain.com * python hostscan.py host1.domain.com host2.domain.com [...] More information: * python domainscan.py -h * python hostscan.py -h To improve performance, increase the throttle limit with the -t switch, or set throttle in config.py. If you experience excessive connection timeouts, lower it. Extending: Write a module in checks/, then add that to the top of either hostscan.py or domainscan.py. (Improving this process is at the top of my to-do list.)