Tools

Check your NGINX version against known CVEs

Enter any NGINX version string (nginx/1.24.0, nginx version: nginx/1.24.0, or plain 1.24.0) and get an instant CVE report from the local advisory database. Paste your nginx.conf for condition-aware matching — CVEs that only apply when specific modules (HTTP/2, mp4, QUIC, resolver) are active are flagged separately from unconditional findings.

CIS-style PostgreSQL security audit for postgresql.conf and pg_hba.conf

Paste your postgresql.conf and pg_hba.conf and get a structured security report. Covers network exposure, authentication methods, SSL/TLS, password hashing, audit logging, and access control rules. Each finding includes real-world attack context, OWASP mapping, and an exact config fix. Generate a hardened baseline config for both files.

CIS NGINX Benchmark v2.1.0 compliance scanner

Evaluate your NGINX configuration against CIS NGINX Benchmark v2.1.0 controls. Covers TLS configuration, security headers, information disclosure, reverse proxy hardening, and resource controls. Each finding maps to a CIS rule ID with an exact remediation snippet. Generate a fully annotated CIS-hardened config template in one click.

Detect security, performance, SEO, and proxy issues in any NGINX config

Paste a server block, reverse proxy config, or full nginx.conf and get an instant scored report — missing security headers, TLS issues, rate limiting, gzip/brotli, proxy timeouts, HTTPS redirects, and more. Findings categorized by severity. Export as JSON. Runs entirely in-browser.

CLI tool to audit website SEO with optional Google PageSpeed integration

Crawls your site from sitemap, checks on-page SEO — title, meta, canonical, OG tags, JSON-LD, missing alt — and optionally pulls Lighthouse scores via PageSpeed Insights API. Outputs scored HTML + JSON reports.

top-like system monitor in pure Bash with log output

Live system stats in the terminal — CPU per-core, RAM, swap, disk per mount, network I/O, and top processes by CPU. No dependencies beyond standard coreutils. Writes every snapshot to a log file. Runs as a systemd service.

Fast threaded TCP port scanner — pure Python, no dependencies

Scan one or more hosts across port lists or ranges. Reports open/closed/timeout with latency, optional banner grabbing, and CSV/JSON export. Built for quick network audits and connectivity checks in production.