Skip to content

thetillhoff/webscan

BranchesTags

Repository files navigation

webscan

Go Report Card

webscan tries to gather as much information from domains, IPs, and URLs as possible from an external perspective.

Quick Start

CLI Mode

# Install
curl -s https://raw.githubusercontent.com/thetillhoff/webscan/main/install.sh | sh

# Scan a domain
webscan google.com

Web Mode

# Build web version
go build -o webscan-web ./cmd/webscan-web/

# Run web server
./webscan-web --port 8080

# Open http://localhost:8080 in your browser

Then enter any domain, IP, or URL and click "Scan" - all features are auto-enabled!

Installation

CLI Installation

If you're feeling fancy:

curl -s https://raw.githubusercontent.com/thetillhoff/webscan/main/install.sh | sh

If you have brew installed:

brew install thetillhoff/homebrew-tap/webscan

or manually from releases.

Web Installation

To run the web interface:

  1. Build from source:

    # Clone repo
git clone https://github.com/thetillhoff/webscan.git
cd webscan

# Build web version
make build-web
# or manually:
go build -o webscan-web ./cmd/webscan-web/

  2. Run the web server:

    ./webscan-web --port 8080

  3. Open in browser: http://localhost:8080

Usage

CLI

Basic usage:

webscan google.com            # Scan domain and website
webscan 192.168.0.1          # Scan IP address
webscan https://github.com/thetillhoff/webscan  # Scan specific URL
webscan http://example.com:8080                # Scan specific port

Web Interface

The web interface provides a simple, Google-like search experience:

  1. Search Bar: Enter any domain, IP, or URL
  2. Scan Button: Click to start scanning
  3. Results Area: View comprehensive scan results
  4. Options: Toggle "Follow CNAMEs and HTTP redirects"

All features are automatically enabled in the web version - no flags needed!

Project Structure

cmd/
  webscan/           # CLI entry point
  webscan-web/       # Web server entry point
pkg/
  webscan/           # Core scan engine (library)
  webserver/         # Web server implementation
  dnsScan/           # DNS scanning
  tlsScan/           # TLS/SSL scanning
  ...                # Other scan packages
tests/
  e2e/               # End-to-end browser tests (Playwright)
  api/               # API integration tests (Playwright)
  start-test-stack.sh
  playwright.config.ts

Architecture

The web interface uses a hybrid approach:

  • Backend: Go web server performing all scans
  • Frontend: Simple HTML/JS/CSS served by the Go backend
  • API: /api/scan endpoint executes scans with all features enabled

This approach ensures maximum compatibility and feature parity with the CLI while providing a user-friendly web interface.

Features

DNS

Display comprehensive DNS information and improvement recommendations:

  • WHOIS via RDAP
  • Nameserver ownership verification
  • CNAME resolution
  • Records overview (A, AAAA, MX, TXT, etc.)
  • IPv6 readiness checks
  • Domain blacklist detection
  • DNS validators and key values

IP Analysis

  • IPv4 and IPv6 address ownership via RDAP
  • Hoster identification (AWS, Azure, GCP, etc.)
  • Blacklist checks for all discovered IPs

Port Scanning

  • TCP port scanning for common services
  • Parallel checking with configurable timeout per port
  • Cross-IP port consistency verification
  • Special handling for HTTP/HTTPS ports

TLS/SSL Checks

  • Certificate validity and chain verification
  • Cipher suite recommendations
  • TLS version checks (1.2, 1.3 recommended)
  • Perfect Forward Secrecy verification
  • Deduplicated output when multiple IPs share the same certificate

HTTP Detection

  • HTTP/HTTPS availability checks
  • Redirect behavior analysis
  • Protocol version detection (HTTP/1.1, HTTP/2, HTTP/3)
  • Parallel protocol checks with configurable timeout

HTTP Headers

  • Security header analysis (HSTS, CSP, etc.)
  • Cookie inspection
  • Host header recommendations
  • Compression verification

HTML Content

  • HTML validation
  • Resource analysis (CSS, JS, images)
  • Size recommendations
  • Accessibility hints
  • Standards compliance checks

Well-Known Files

  • Checks for standard files: robots.txt, sitemap.xml, security.txt, llms.txt, AI plugin manifest
  • Detects exposed sensitive files: .htaccess, .env, .git/config, wp-config.php, server-status

Development

Build Commands

# Build CLI version
make build
# or: go build -o webscan ./cmd/webscan/

# Build web version
make build-web
# or: go build -o webscan-web ./cmd/webscan-web/

# Run web version
./webscan-web --port 8080

Makefile Targets

  • run <target>: Run CLI with arguments (e.g. make run thetillhoff.de)
  • run-web <args>: Run web server with arguments
  • build: Standard CLI binary
  • build-web: Web server with interface
  • test: Run unit tests
  • lint: Run Go vet, build, and markdownlint
  • format: Code formatting
  • upgrade: Dependency updates
  • compose-start: Start Docker Compose stack
  • compose-stop: Stop Docker Compose stack

Contributing

See DEVELOPMENT.md for development and contribution guidance.

License

MIT License - See LICENSE for details.

Contact

Questions, issues, or contributions welcome:

Roadmap

See TODO.md for the full list of planned features, known bugs, and improvement ideas.

About

Verifies web things

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases 39

v5.2.0 Latest
May 28, 2026
+ 38 releases

Contributors

Languages