Add your description here
Project description
netkatana
🚧Experiment, under construction 🚧
Security scanner for HTTP headers, TLS certificates (using tlsx), and DNS configuration.
uvx netkatana http example.com
uvx netkatana tls example.com
uvx netkatana dns example.com
Implemented checks
Headers
- headers_hsts_missing
- headers_hsts_invalid
- headers_hsts_max_age_zero
- headers_hsts_max_age_low
- headers_hsts_include_subdomains_missing
- headers_hsts_preload_not_eligible
- headers_hsts_duplicated
- headers_csp_missing
- headers_csp_unsafe_inline
- headers_csp_unsafe_eval
- headers_csp_object_src_unsafe
- headers_csp_base_uri_missing
- headers_csp_frame_ancestors_missing
- headers_csp_form_action_missing
- headers_csp_script_src_missing
- headers_csp_script_src_unrestricted
- headers_csp_style_src_missing
- headers_csp_style_src_unrestricted
- headers_csp_connect_src_missing
- headers_csp_connect_src_unrestricted
- headers_csp_img_src_missing
- headers_csp_img_src_unrestricted
- headers_csp_font_src_missing
- headers_csp_font_src_unrestricted
- headers_csp_worker_src_missing
- headers_csp_worker_src_unrestricted
- headers_csp_report_only_unsafe_inline
- headers_csp_report_only_unsafe_eval
- headers_csp_report_only_object_src_unsafe
- headers_csp_report_only_base_uri_missing
- headers_csp_report_only_frame_ancestors_missing
- headers_csp_report_only_form_action_missing
- headers_csp_report_only_script_src_missing
- headers_csp_report_only_script_src_unrestricted
- headers_csp_report_only_style_src_missing
- headers_csp_report_only_style_src_unrestricted
- headers_csp_report_only_connect_src_missing
- headers_csp_report_only_connect_src_unrestricted
- headers_csp_report_only_img_src_missing
- headers_csp_report_only_img_src_unrestricted
- headers_csp_report_only_font_src_missing
- headers_csp_report_only_font_src_unrestricted
- headers_csp_report_only_worker_src_missing
- headers_csp_report_only_worker_src_unrestricted
- headers_csp_duplicated
- headers_csp_report_only_duplicated
- headers_cors_allow_origin_wildcard
- headers_cors_allow_origin_null
- headers_cors_allow_credentials_wildcard
- headers_cors_allow_credentials_invalid
- headers_cors_allow_methods_unsafe
- headers_cors_max_age_excessive
- headers_corp_missing
- headers_corp_invalid
- headers_corp_same_site
- headers_corp_cross_origin
- headers_coep_missing
- headers_coep_invalid
- headers_coep_unsafe_none
- headers_coep_credentialless
- headers_coep_report_only_invalid
- headers_coep_report_only_unsafe_none
- headers_coep_report_only_credentialless
- headers_coop_missing
- headers_coop_invalid
- headers_coop_unsafe_none
- headers_coop_same_origin_allow_popups
- headers_coop_noopener_allow_popups
- headers_coop_report_only_invalid
- headers_coop_report_only_unsafe_none
- headers_coop_report_only_same_origin_allow_popups
- headers_coop_report_only_noopener_allow_popups
- headers_x_content_type_options_missing
- headers_x_content_type_options_invalid
- headers_x_content_type_options_duplicated
- headers_referrer_policy_missing
- headers_referrer_policy_invalid
- headers_referrer_policy_unsafe
- headers_x_frame_options_missing
- headers_x_frame_options_invalid
- headers_x_frame_options_duplicated
- headers_cookie_secure_missing
- headers_cookie_httponly_missing
- headers_cookie_samesite_missing
- headers_cookie_prefix_secure_misconfigured
- headers_cookie_prefix_host_misconfigured
- headers_cookie_invalid
- headers_server_disclosure
- headers_x_powered_by_disclosure
Response
- response_redirect_https_downgrade
- response_status_server_error
- response_redirect_chain_long
- response_redirect_chain_mixed_schemes
TLS
- tls_version_deprecated
- tls_version_outdated
- tls_cert_expired
- tls_cert_self_signed
- tls_cert_mismatched
- tls_cert_revoked
- tls_cert_untrusted
- tls_cipher_weak
DNS
- dns_spf_missing
- dns_spf_multiple
- dns_spf_permissive
- dns_dmarc_missing
- dns_dmarc_multiple
Architecture notes:
- rules are defined in rules.py
- validators live under validators
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
netkatana-0.1.10.tar.gz
(20.1 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file netkatana-0.1.10.tar.gz.
File metadata
- Download URL: netkatana-0.1.10.tar.gz
- Upload date:
- Size: 20.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.11.6 {"installer":{"name":"uv","version":"0.11.6","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"macOS","version":null,"id":null,"libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":null}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
7806ef273b65dda2c5dcfcb8ec74c9e3313b4f8da6c3e6783b90489c0c259236
|
|
| MD5 |
b1cd16af0e5742fdcef61ef1634d1a25
|
|
| BLAKE2b-256 |
ecf23411d1733c2b013592c40b88834423c6be9082bb85c7828ebccc0ac08680
|
File details
Details for the file netkatana-0.1.10-py3-none-any.whl.
File metadata
- Download URL: netkatana-0.1.10-py3-none-any.whl
- Upload date:
- Size: 24.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.11.6 {"installer":{"name":"uv","version":"0.11.6","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"macOS","version":null,"id":null,"libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":null}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
937e635bb06e9f2dbc5fec80240af171c8973be7bec945bdc2a1404b8933b19b
|
|
| MD5 |
437429f015ad9ff0e5636e32fbb94f18
|
|
| BLAKE2b-256 |
02df32300ca5a77e51f2cef841c1fbc50251498d9998a3eb65f9c451d1663a67
|
