-
Notifications
You must be signed in to change notification settings - Fork 13
Home
SentinelDeck is a passive attack-surface monitoring tool for small businesses, agencies, and security consultants.
It helps turn a domain or IP address into a clear security posture report with a risk grade, structured findings, and practical remediation steps.
SentinelDeck performs safe, passive checks across public-facing security signals:
- DNS hygiene
- HTTP security headers
- TLS certificate quality
- Email authentication
- Certificate transparency footprint
- Subdomain exposure
- Lookalike domain risk
- Public configuration issues
It does not perform intrusive scanning or exploitation.
Run a one-time scan:
pipx run sentineldeck scan example.comOr with uvx:
uvx sentineldeck scan example.comPermanent install:
pip install -U sentineldeck
sentineldeck scan example.comOpen the local dashboard:
sentineldeck dashboardSentinelDeck only uses normal public lookups such as DNS, HTTP, TLS, and email-related checks.
Each scan produces:
- A to F risk grade
- 0 to 100 risk score
- Prioritized findings
- Severity levels
- Practical remediation steps
Outputs include:
- Structured JSON
- HTML reports
- Shareable score cards
- Change reports
- Dashboard view
SentinelDeck can compare scans over time and send webhook alerts when a domain posture changes or regresses.
- Agency website security snapshots
- Client onboarding checks
- Small business domain posture reviews
- Consultant security reports
- Passive external exposure monitoring
- Pre-audit discovery
- Recurring domain monitoring
SentinelDeck is designed for authorized and passive assessment only.
Use it only on:
- Your own domains
- Client domains with permission
- Domains you are authorized to assess
It does not exploit vulnerabilities, brute-force services, or perform aggressive scanning.
This Wiki can be expanded with:
- Installation Guide
- CLI Usage
- Dashboard Guide
- Report Outputs
- Monitoring and Alerts
- Safety Model
- Troubleshooting
- Developer Notes
Main repository: