RealiTLScanner

RealiTLScanner is a TLS configuration scanner and network security auditor designed to identify security settings across IP addresses and domains. It functions as a target discovery tool that analyzes TLS configurations to find compatible endpoints and evaluate server security postures.

The project distinguishes itself as a geolocation-enhanced network scanner, appending geographic location data and country codes to discovered security configurations using a local location database. This allows for the geographic mapping of servers by combining TLS scan results with GeoIP data.

The tool supports internet asset discovery through multi-source target imports, including the extraction of domains from URLs and the resolution of CIDR ranges into discrete addresses. It manages these tasks using a concurrent worker pool and asynchronous probe dispatch to analyze targets at scale.

Scan results and security metadata are processed through a data pipeline and exported into structured formats, such as CSV files, for further analysis.

Features

Network Security Auditing - Audits network security postures by detecting TLS configurations across wide network blocks and domain lists.

Configuration Analysis - Provides comprehensive scanning of IP addresses and domains to analyze TLS security settings and server configurations.

IP Geographic Mapping - Maps the physical location of servers by combining TLS scan results with IP-to-location data.

Geo-Resolution Lookups - Appends geographic coordinates and country codes to scan results by matching IP addresses against a local location database.

Network Address Resolution - Resolves domain names and CIDR blocks into discrete IP addresses to create a comprehensive target list.

Multi-Format Target Scanning - Accepts multiple input formats, including CIDR ranges and URLs, to probe a wide array of targets.

Target Expansion - Provides functionality to resolve CIDR network range notations into individual IP addresses for comprehensive scanning.

Asset Discovery Tools - Enumerates internet-facing infrastructure by converting CIDR ranges and URLs into structured target lists.

Geolocation-Enhanced Security Scanners - Combines network scanning for security configurations with automatic geographic location tagging for discovered servers.

Network Encryption Auditors - Audits the strength and configuration of network encryption across thousands of target addresses.

TLS Configuration Scanning - Identifies and analyzes TLS security settings across multiple IP addresses and domains to find compatible endpoints.

TLS Target Discovery - Extracts domains from URLs and resolves network blocks to build comprehensive lists of TLS-enabled servers.

TLS Security Auditing - Identifies TLS security settings for domains and IP addresses using customizable probes and concurrent scanning.

Data Enrichment - Enhances raw scan results by augmenting IP targets with geographic location metadata.

Asynchronous Probing - Implements non-blocking network probes to efficiently analyze thousands of TLS endpoints in parallel.

Domain Extraction Parsers - Isolates hostnames and domains from crawled web pages to identify potential network scanning targets.

TLS Protocol Identification - Searches for servers with specific security protocols to build lists of compatible endpoints for network tunneling.

Data Processing Pipelines - Employs a modular pipeline to stream scan results through sequential stages of geographic enrichment and metadata formatting.

Concurrent Request Pools - Uses a capped resource pool of goroutines to manage simultaneous network requests and avoid system exhaustion.

XTLSRealiTLScanner

Features

Star history