Web-Check: All-in-one OSINT website analysis dashboard
Web-Check is an open-source website OSINT dashboard presenting IP, SSL, DNS, cookies, ports, traceroute, crawl rules and performance data to assist security assessment, investigation and diagnostics.
GitHub Lissy93/web-check Updated 2026-01-07 Branch main Stars 31.8K Forks 2.5K
OSINT website security analysis dashboard/CLI deploy: Docker/Netlify/Vercel

💡 Deep Analysis

4
Why does the project use an "on-demand jobs" pipeline architecture? What are the technical and operational advantages?

Core Analysis

Core Question: The on-demand jobs pattern is designed to balance feature richness with runtime flexibility, allowing the tool to offer basic scanning on restricted hosts while enabling deep probes in self-hosted environments.

Technical Analysis

  • Modular extensibility: Each detection is an independent job, so adding new checks is low-impact and simpler to test and deploy.
  • Resource and permission isolation: On-demand execution avoids long-running network usage and API quota consumption; high-privilege jobs (port scans, traceroute) can be disabled on hosted platforms.
  • Deployment adaptability: Support for Netlify/Vercel allows quick demos; Docker self-hosting permits full-spectrum detection where network probes are allowed.
  • Maintainability: Modular jobs help with unit testing, failure isolation, and parallel execution, improving reliability and observability.

Practical Recommendations

  1. Use as a limited scanner on restricted hosts: Enable only HTTP/Lighthouse/DNS/TLS jobs on serverless hosts.
  2. Self-host for full capability: Deploy on a VM/Docker container with probing permissions for ports, traceroutes, and WHOIS.
  3. Compose jobs per need: For CI or audits, enable only required jobs (e.g., Lighthouse + headers) to save time and quotas.

Caveats

Job dependencies: Some jobs depend on outputs from earlier jobs (e.g., IP derivation affects port scan targets). Ensure correct ordering and dependency handling.

Summary: The on-demand jobs architecture delivers clear benefits in flexibility, extensibility, and operational cost control, but requires deliberate job selection based on deployment environment.

88.0%
In which business or testing scenarios is web-check the preferred tool, and when should alternatives be chosen?

Core Analysis

Core Question: Decide whether web-check is your primary tool based on depth and persistence needs: it is ideal for rapid, cross-layer reconnaissance and pre-deploy checks; for continuous monitoring, deep exploit verification, or enterprise asset management, use specialized alternatives.

Technical Analysis

  • Good-fit scenarios:
  • Initial OSINT/recon: Collect certificates, DNS, IP/Geo, headers, and trackers to define follow-up work.
  • Pre-deployment health checks: Use Lighthouse, headers, robots, and sitemap checks to detect performance/SEO/security issues.
  • Incident triage: Provides a quick dashboard to localize potentially affected components.
  • Not suitable / alternative scenarios:
  • Deep exploit verification: Use Burp, Metasploit, or dedicated exploit testing tools.
  • Continuous asset management and alerting: Enterprise SIEM and continuous scanners are required.
  • Large-scale concurrent scanning: Dedicated scanners handle bulk scheduling and rate control better.

Practical Recommendations

  1. Use in combination: Treat web-check as the initial intake; follow up high-risk findings with nmap/sslyze/ZAP for verification.
  2. CI integration: Run Lighthouse + headers jobs on release branches as quality gates.
  3. Self-host for active probing: For active network checks, deploy via Docker and pair with dedicated scanners.

Caveats

Do not treat single-run findings as final: Use web-check outputs as directional intelligence and require expert verification.

Summary: web-check is excellent as a cross-team rapid reconnaissance and health-check tool; for deep verification and continuous monitoring, augment or replace it with professional security and monitoring solutions.

88.0%
Which detection features are limited across different deployment environments (Netlify/Vercel vs Docker self-hosting), and how can you obtain complete results?

Core Analysis

Core Question: The set of jobs that can run fully depends on the deployment environment’s network privileges: hosted platforms are suitable for HTTP-layer checks, while self-hosting allows active network probes.

Technical Analysis

  • Restricted or unavailable jobs on hosted platforms:
  • Port scanning: Typically requires raw sockets or nmap-like access, which serverless platforms disallow.
  • Traceroute: Depends on ICMP/TCP TTL operations often blocked by hosting environments.
  • WHOIS / some GeoIP: May need a client or reliable third-party API; hosted platforms can be limited by quotas and CORS.
  • Usually available jobs:
  • HTTP headers, cookies, robots, page maps, Lighthouse (if headless browser can run) generally work, though headless may be constrained by memory/startup limits.

Practical Recommendations

  1. On Netlify/Vercel: Treat web-check as a demo/basic audit tool—enable only HTTP/Lighthouse/DNS/TLS jobs.
  2. For complete network detection: Deploy via Docker on a host with outbound ICMP/TCP privileges, install a WHOIS client or configure GeoIP/WHOIS API keys.
  3. Handling CDN masking: If backends are behind CDN, run scans from an authorized internal host or bastion that can reach origin IPs (ensure legal authorization).

Caveats

Legality and compliance: Deep active scanning without permission may violate ToS or laws. When self-hosting for full results, obtain authorization first.

Summary: Hosted platforms provide quick, low-privilege HTTP-level auditing; for ports, routing, and WHOIS completeness, self-host on controlled infrastructure and configure necessary network permissions and APIs.

87.0%
How can web-check outputs be integrated into ops/security workflows to improve remediation efficiency?

Core Analysis

Core Question: To turn web-checks one-off reconnaissance outputs into actionable remediation, you must integrate its structured results into ticketing, CI, and monitoring workflows, and define verification and retest ownership.

Technical Analysis

  • Available structured outputs: redirect ledger, page map, quality checklist, certificate expiry, missing security headers, open ports, Lighthouse scores—these can map to ticket fields or alert metrics.
  • Integration points:
  • Ticketing systems (Jira/GitHub Issues): Auto-create tickets with reproduction steps and web-check report links.
  • CI/CD: Run Lighthouse and headers jobs before merges/releases; block deploys on failures.
  • Monitoring/alerts: Push critical thresholds (cert expiry, unexpected open ports, large drops in Lighthouse score) to Alertmanager or chat tools.

Practical Recommendations

  1. Define rule-based thresholds: Specify which findings trigger auto-tickets (e.g., cert < 14 days, missing critical security headers, Lighthouse < threshold).
  2. Secondary verification tasks: For high-impact findings, auto-run specialized verifiers (sslyze for TLS, nmap for ports) to reduce false positives.
  3. Ownership and retesting: Assign owners for each ticket class and require retesting (rerun web-check or dedicated tools) after remediation.

Caveats

Avoid noise and false positives: Use thresholds and secondary verification to limit unnecessary tickets; create exceptions for CDN/hosted environments.

Summary: Integrate web-checks structured outputs into ticketing, CI, and alerting pipelines; combine with secondary verification and clear ownership to convert reconnaissance into traceable remediation and faster, higher-quality fixes.

86.0%

✨ Highlights

  • Comprehensive collection of website OSINT modules
  • Provides multiple deployment paths (Docker / Netlify / Vercel)
  • Repository lacks a license declaration; compliance requires license verification
  • Low community and release activity; maintenance risk present

🔧 Engineering

  • Aggregates diverse site information: IP, SSL, DNS, cookies, ports, traceroute, etc.
  • Presents data as a dashboard, suitable for quick reviews and visual analysis
  • Supports hosted live demo and mirrored sources, facilitating evaluation and demos

⚠️ Risks

  • Missing explicit license and contributor metadata; legal review required before commercial/distribution use
  • OSINT features may touch privacy and compliance boundaries; adhere to legal and ethical constraints before use
  • Repository shows very few contributors and commits; long-term maintenance and vulnerability fixes are uncertain

👥 For who?

  • Security researchers and red teamers for initial reconnaissance and asset enumeration
  • Operators/site owners for security assessment, performance troubleshooting, and configuration audits