Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Python
branch: master

Fetching latest commit…

Cannot retrieve the latest commit at this time

Failed to load latest commit information.
checks
tests
.gitignore
LICENSE
README
__init__.py
check.py
cli.py
color.py
common.py
config.py
domainscan.py
err.py
hostscan.py
localscan.py
log.py
runtests.sh
scanner.py

README

Scrutinize is an extensible misconfiguration scanner--not a vulnerability scanner,
use Metasploit for that--written using Twisted. It checks for common misconfigurations
such as allowing DNS Zone Transfer for your domain, not having a PTR record, or
allowing read access to your configuration files.

Usage examples:
  * python domainscan.py domain.com
  * python domainscan.py domain1.com domain2.com [...]
  * python hostscan.py host.domain.com
  * python hostscan.py host1.domain.com host2.domain.com [...]

More information:
  * python domainscan.py -h
  * python hostscan.py -h

  To improve performance, increase the throttle limit with the -t switch, or
  set throttle in config.py. If you experience excessive connection timeouts,
  lower it.

Extending:
  Write a module in checks/, then add that to the top of either hostscan.py or
  domainscan.py. (Improving this process is at the top of my to-do list.)
Something went wrong with that request. Please try again.