PowerShell Webserver Security Report
Created By: Brad Voris
Version: 1.2
Overview:
This PowerShell Script scans a website for configuration information and some basic known vulnerabilities
Performs the following tests on a webserver
Validates if TCP ports 21, 22, 53, 80, 443, 8080 are open
Gets HTTP Response Headers
Gets Certificate information
Gets robots.txt data
Gets sitemap.xml data
Gets crossdomain.xml data
Gets input fields names, types, ids and maxlength
Validates if vulnerable URLs exist and are accessible to the internet
Generates a report located here:
C:\temp\PoSh-Security-Report-$URL.html
This is a early work in progress.
I am not responsible for how you use this! Use this at your own risk!
Sample Report: