Bash script to identify fast the security level of networks and web applications against well known vulnerabilities.
With the usage of the Nmap script engine, hping3, sslscan tool and wafw00f the script performs the following checks:
- Check for Poodle vulnerability
- Check for Heartbleed vulnerability
- SSL scan
- Check for anonymous FTP connections
- Check for Shellshock Vulnerability
- Check for Slowloris Vulnerability
- Check HTTP methods
- Check timestamps
- Check webserver information
- Check Strict-Transport-Security
- Banner grabbing
- WAF detection
- Check DoS attack
#References: https://nmap.org/book/nse.html