Simple CLI interface to leverage ImmuniWeb® Community Edition free tools in CI/CD pipelines and DevOps.
Create virtual environment and install dependencies. Python >= 3.7 required.
git clone https://github.com/immuniweb/iwtools.git
cd iwtools/iwtools
python3 -m venv env
source ./env/bin/activate
pip install -r requirements.txtInstead of preparing and configuring the environment yourself, you can use our Docker Image.
Test your email server security, encryption, configurations and privacy:
./iwtools.py email immuniweb.com- Email Server Security Test
- Email Server Encryption Test
- DNS Misconfigurations Test
- Phishing Campaigns Detection
- Compromised Credentials Detection
- Black & Spam Lists Presence Detection
Test your website security vulnerabilities, privacy issues, GDPR and PCI DSS compliance:
./iwtools.py websec https://www.immuniweb.com- Web Software Detection
- Website Vulnerability Scan
- WordPress & Drupal Scanning
- Website Privacy Check
- HTTP Headers & CSP Test
- AI Bot Protection Test
Test your iOS or Android mobile apps for OWASP Mobile Top 10 and other vulnerabilities:
Local mobile app check:
./iwtools.py mobile /home/user/myapp/build/myapp.apkRemote mobile app check:
./iwtools.py mobile https://example.com/download/myapp.apkPublished mobile app check:
./iwtools.py mobile https://play.google.com/store/apps/details?id=com.app.my- iOS App Security Test
- Android App Security Test
- OWASP Mobile Top 10 Scan
- Mobile Security Test
- Mobile App Privacy Test
- Software Composition Analysis
Discover your data leaks on the Dark Web and get your cyber threat exposure report:
./iwtools.py darkweb www.immuniweb.com- Dark Web Exposure Monitoring
- Phishing & Scam Websites Detection
- Cloud Exposure & Incidents Monitoring
- Trademark Infringement Monitoring
- Cyber & Typo Squatting Domains Detection
- Fake Accounts in Social Networks Detection
Test SSL/TLS of your web or email servers for security, PCI DSS, HIPAA & NIST compliance:
Web Server check:
./iwtools.py ssl immuniweb.com:443Mail Server check:
./iwtools.py ssl immuniweb.com:25- Web Server SSL/TLS Security
- Email Server SSL/TLS Security
- SSL Certificate Test Validity
- Post-Quantum Cryptography (PQC) Readiness
- PCI DSS, HIPAA & NIST Compliance
- Best-Practices Compliance
When executing the script you can specify option -p or --pipeline parameter, which will compare the results of the
test with pre-determined results in a configuration file.
This can be done only when using websec, ssl and email services.
The result of the comparison can be viewed in the Exit Code of the script.
./iwtools.py email immuniweb.com -p
./iwtools.py websec https://www.immuniweb.com -p
./iwtools.py ssl www.immuniweb.com:443 -pBy default, iwtools uses configuration file config/email.yaml for email service,
config/websec.yaml for websec service, and config/ssl.yaml for ssl.
You can change the values in these 3 files, or use your own configuration file.
The path to the file will need to be specified upon iwtools' launch:
./iwtools.py websec https://www.immuniweb.com -cfg config/websec-new.yamlCurrently only yaml and json formats are supported.
List of parameters that can be configured.
The script's Exit Code can return one of these 4 status codes:
- 0 - all checks have passed successfully.
- 1 - an error occured.
- 2 - an error occured in the input data.
- 3 - at least one of the checks has failed.
Command line options: documentation Read more: ImmuniWeb® Community Edition
This software is provided "as is" without any warranty of any kind. By using this software you agree to the Terms of Service: https://www.immuniweb.com/pages/legal.html By using this software you accept the Privacy Policy: https://www.immuniweb.com/pages/privacy.html