← back to tools

domain_audits

4 files · ready for inspection

readme

domain_audits A dual-script toolkit for auditing web domains and discovered endpoints. Includes: • header_audit.sh — checks HTTP security headers and grades configurations • dirb_audit.sh — crawls and inspects endpoints, HTML, and JavaScript for quick reconnaissance Features • Run each module independently • Saves all results in reports/ • Integrates automatically if both scripts are present • Works entirely from Bash (no external requirements) Installation # Clone the repository ```bash git clone https://github.com/ekomsSavior/domain_audits.git cd domain_audits ``` # Make scripts executable ```bash chmod +x header_audit.sh chmod +x dirb_audit.sh ``` Usage 1. Header Audit Check a single domain for missing or weak HTTP headers and get an auto-grade. ```bash ./header_audit.sh https://target.com ``` Results are saved in reports/<domain>_headers.md. 2. Directory / Endpoint Audit Interactively audit one or multiple URLs or a file list. ```bash ./dirb_audit.sh ``` When prompted: • Enter one or more domains or URLs separated by spaces • Or specify a file of targets using @filename.txt Artifacts (headers, HTML, JS, fingerprints) are stored in reports/dirb_audit_<timestamp>/. Notes • Use responsibly on systems you own or have permission to test. • Combine both modules for a complete surface and header security overview. • Optional tools like whatweb enhance fingerprinting but are not required.

source code

files

viewer

select a file
// click a file to view source

license

MIT License Copyright (c) 2026 ek0mssavi0r Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. USE AT YOUR OWN RISK. NO WARRANTY PROVIDED.
download zip // inspect all source before execution
read the code before you run it. always.