About SPAT

Security Posture Analysis Tool — by Antibody Cyber Technology, LLC

What is SPAT?

SPAT performs automated external security assessments of websites and servers. It checks TLS/SSL configuration, HTTP security headers, DNS resolution, port exposure, and more — all from the network perspective.

Security Checks (8 External)

DNS Resolution — Verifies DNS resolves correctly and matches expected IP
TLS Certificate — Checks validity, expiration, issuer, and chain
TLS Protocols — Detects deprecated TLSv1 and TLSv1.1
HTTP Security Headers — HSTS, CSP, X-Frame-Options, and more
HTTP→HTTPS Redirect — Ensures HTTP properly redirects
Port Scanning — Checks for unexpected open ports
Server Disclosure — Detects version leaks in headers
robots.txt — Checks for sensitive path exposure

Scoring

Each scan starts at 100 points. Points are deducted for each issue found, weighted by severity (CRITICAL: 15pts, HIGH: 6-10pts, MEDIUM: 4-5pts, LOW: 1-2pts). Grades range from A (90+) to F (<50).

CLI Version

SPAT also comes as a CLI tool with additional SSH-based server-side scanning (16 extra checks) and PDF/HTML report generation. Contact us for details.