macOS
brew install badkeyslocal Homebrew formula metadata
安装
brew install badkeyslocal Homebrew formula metadata
nix profile install nixpkgs#badkeysnixpkgs package indexes · pkgs/by-name/ba/badkeys/package.nix · 来源: api.github.com
概览
Tool to find common vulnerabilities in cryptographic public keys
历史
badkeys is a Python tool and library for checking cryptographic public keys against known vulnerability patterns and blocklist data. It sits in the practical security-tooling niche between certificate/key parsers and vulnerability scanners.
The badkeys GitHub repository was created in January 2022. Its README says the tool checks public keys in multiple formats for known vulnerabilities, with a public web version at badkeys.info.
The README credits Hanno Boeck as author, says the work was initially funded in 2022 through the CIDI project and CISAT at the IT University of Copenhagen, and notes later 2025/2026 support from NLnet's NGI0 Core Fund.
The project is distributed through PyPI and appears in Homebrew and Nix in the batch package metadata. The README also points users to Repology for distribution packages, suggesting upstream expected operating-system packaging beyond Python-only installation.
Release names show the project expanding its checks over time, including DKIM support in 2024, parser robustness and return-code improvements in 2026, and a 'Post-Quantum Edition' release in June 2026.
badkeys users first download blocklist data with badkeys --update-bl, then scan key, certificate, CSR, SSH public key, TLS host, or SSH host material. The README documents return codes that distinguish application errors, parser problems, and vulnerable keys.
Its command-line use is intentionally automation-friendly: quiet output when no vulnerable keys are found, an all-keys output flag for audits, and bitmask return codes for CI or batch scans.
badkeys is package-nerd relevant because it turns a pile of cryptographic failure cases into a reusable CLI and library with data updates. Packaging it gives security teams a repeatable way to scan public keys without copying ad hoc scripts around.
It also illustrates a modern security package pattern: a small Python CLI, external vulnerability/blocklist data, optional network scanning modes, and package-manager availability for workstation and CI installation.
安全态势
没有找到 badkeys 的匹配本地密钥处理 manifest。Nucleus 软件包元数据仍在此发布,以便未来覆盖拥有稳定的软件包 URL。
在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。
可执行文件
| 命令 | 类型 | 暴露范围 | 备注 |
|---|---|---|---|
badkeys | cli | 全局可执行文件 |
新鲜度
这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。
安装元数据
| 软件包键 | brew:badkeys |
|---|---|
| 版本 | 0.0.19 |
| 软件包管理器 | Homebrew |
| 软件包管理器页面 | https://formulae.brew.sh/formula/badkeys |
| 主页 | https://badkeys.info |
| 仓库 | https://github.com/badkeys/badkeys |
| 上游文档 | https://badkeys.info/ |
| 许可证 | MIT |
| 源码归档 | https://files.pythonhosted.org/packages/bd/a7/b222a5f0db2bc9e765252a109da1ab1baeed0da6e0b050e2baa3208650c4/badkeys-0.0.19.tar.gz |
| 最后更新 | 2026-06-17T09:59:35Z |
| Pulse | updated |
| 依赖 | cryptography, gmp, libmpc, mpfr, python@3.14 |
| Bottle | 可用 (于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | 未定义 |
| 服务 | 未声明 |
注册表事实
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | badkeys |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
源数据库匹配
匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。
badkeys
nix profile install nixpkgs#badkeys来源线索
此页面由 av-web 从 scripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。
View the package source record on GitHub.