18F / domain-scan
A lightweight pipeline, locally or in Lambda, for scanning things like HTTPS, third party service use, and web accessibility.
☆371Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for domain-scan
- How the federal .gov domain space is doing at best practices and policies.☆95Updated 4 years ago
- ☆29Updated 6 years ago
- Scan domains and return data based on trustworthy email best practices☆193Updated 3 months ago
- Dashboard to collect, analyze, and respond to reported phishing emails.☆284Updated last year
- Scan domains and return data based on HTTPS best practices☆672Updated 3 months ago
- Ruby Gem to sniff information about a domain's technology and capabilities.☆89Updated last year
- OSSSM (awesome). Open source short-term secure messaging☆110Updated last year
- Data Analysis Pipeline☆159Updated 8 months ago
- Open-source pentesting management and automation platform by Salesforce Product Security☆593Updated 2 years ago
- Ubuntu 14.04 LTS is FISMA Ready.☆54Updated 3 years ago
- OUT OF DATE: Internal documentation for TTS's bug bounty.☆9Updated 3 years ago
- INACTIVE - Collection of Tools & Procedures for double checking GitHub configurations☆138Updated 6 months ago
- DNS configuration for domains managed by GSA TTS☆45Updated last week
- passivedns-client provides a library and a query tool for querying several passive DNS providers☆198Updated 2 years ago
- A toolkit to generate an offline Chrome extension to detect phishing attacks using a bespoke convolutional neural network.☆130Updated 7 years ago
- Framework for Testing WAFs (FTW!)☆264Updated last year
- Compliance automation for cloud.gov☆36Updated last month
- Easy automated vulnerability scanning, reporting and analysis☆696Updated 4 years ago
- Generate AWS Lambda environment zip files for use by cisagov/domain-scan☆12Updated last year
- Home of the .gov registry☆28Updated 9 months ago
- Collects WHOIS details for every IPv4 netblock. Reports supported via Elasticsearch.☆101Updated 6 years ago
- Toolkit for getting open source apps ready for secure, approved government use☆99Updated 2 years ago
- SeaSponge is an accessible threat modelling tool from Mozilla☆278Updated 6 years ago
- User, contributor and developer friendly vulnerability database☆129Updated 5 years ago
- CMS/LMS/Library etc Versions Fingerprinter☆256Updated 3 years ago
- Tools for downloading zone data and authentication credentials from ICANN's CZDS application.☆125Updated 5 years ago
- This is the Login.gov main website where the public is able to learn about their one account for government.☆39Updated this week
- An observatory for TLS configurations, X509 certificates, and more.☆534Updated 4 months ago
- This script communicates with the Nessus API in an attempt to help with automating scans. Depending on the flag issued with the script, y…☆213Updated 5 years ago
- Tagging and annotation framework for scan data☆101Updated 6 years ago