Giter VIP home page Giter VIP logo

scantxt / scantxt Goto Github PK

View Code? Open in Web Editor NEW
3.0 3.0 2.0 164 KB

scantxt is a common way to allow/disallow scanning activity with additional features for ownership verification, notifications and scanning verification

Home Page: https://www.scantxt.org

License: The Unlicense

HTML 100.00%
accessibility-testing ownership-verification performance-testing scanner scanning-tool scantxt seo-tools vulnerability-scanners

scantxt's Introduction

scantxt

scantxt is a common way to opt-out and/or verify ownership to scanners. It's similar in structure to dmarc with features built-in like ownership verification, notification endpoints and scanner verifications.

    +-----------------------------+                   +---------+       +---------+
    |                             |                   | scanner +------>| scanner |
+---+     Reporting Endpoint      |<-------+          | private |       | public  +---------+
|   |                             |        |          | key     |<------+ key     |         |
|   +-----------------------------+        |          +----+----+       +---------+         |
|                                          |               |                                |
|                                          |               v                                |
|   +-----------------------------+    +---+--------------------------------------------+   |
|   |                             |    |                                                |   |
+---+       Target / Asset        |<---+                    Scanner                     |   |
|   |                             |    |                                                |   |
v   +-----------------------------+    +--------------------------------+               |   |
|   |       "scan" records        |    |        "scanner" records       |               |   |
|   +-------------+---------------+    +----------------+---------------+---------------+   |
|   | "_scan" DNS | /.well-known/ |    | "_scanner" DNS | /.well-known/ | /.well-known/ |<--+
|   | TXT records | scan.json     |    | TXT record     | scanner.json  | jwks.json     |
|   +-------------+---------------+    +----------------+---------------+---------------+
|                                                                               ^
|                                                                               |
+-------------------------------------------------------------------------------+

(see overview-diagram.png if this doesn't render correctly)

scan records

The recommended method is to use the _scan subdomain for DNS TXT records. Alternatively, /.well-known/scan.json (with the mime type application/json) can be used (.json extension optional).

See more info on scan records and format here: SCAN.md

You can view examples of these at https://www.scantxt.org/.well-known/scan.json or by doing a DNS TXT lookup against _scan.scantxt.org

scanner records

This is a mechanism for scanners to set contact details and signpost what type of scanning they perform.

The recommended method is to use the _scanner subdomain for DNS TXT records. Alternatively, /.well-known/scanner.json (with the mime type application/json) can be used (.json extension optional).

See about scanner records and format here: SCANNER.md

You can view an example of this at https://www.scantxt.app/.well-known/scanner.json or by doing a DNS TXT lookup against _scanner.scantxt.app

Scanner guidance

See scanner-guidance for details on identification and verification.

Reporting guidance

See reporting-guidance for details on reporting endpoints and mechanisms.

scantxt's People

Contributors

olliejc avatar

Stargazers

avatar avatar avatar

Forkers

teoten xtenex

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.