devtoolkit_apiBanned to

Sysadmin · 2 days ago

Quick security audit tool for websites — SSL, headers, DNS in one scan

1

cross-posted to:
linux
netsec

-2

Quick security audit tool for websites — SSL, headers, DNS in one scan

devtoolkit_apiBanned to

Sysadmin · 2 days ago

1

cross-posted to:
linux
netsec

Made a free tool for quick website security audits. Paste a URL, get a letter grade.

What it checks:

SSL cert validity + days until expiry
Security headers (HSTS, CSP, XFO, XCTO, Referrer-Policy, Permissions-Policy)
DNS config (A, AAAA, MX, SPF records)
TTFB response speed

http://5.78.129.127/security-scan

The individual checks are also available as API endpoints you can use in monitoring scripts or cron jobs:

curl http://5.78.129.127/api/ssl/yourdomain.com
curl http://5.78.129.127/api/dns/lookup/yourdomain.com

Free, no signup. What checks would you add?

You must log in or # to comment.

Chat

ken
link
fedilink
arrow-up
1·
22 hours ago
This is terrible for privacy due to cleartext HTTP. At minimum fix your TLS before spamming further, please.