zED

This is the project page for:
zED commenced around Easter 2019.  As of 18th July it is in alpha and is an MVP. 
In the “new” the gov.uk to gov.uk/nhs.net/police.uk email being secure (ie the post GCSx world). How do we assess if suppliers to local councils are secure?  Do they use TLS s ecuring their email via encryption and do they have a dmarc DNS record in place set at reject/100% thus securing their reputation as senders of email?
zED seeks to answer this question with regular and one-off scans, and aid the decision making of data asset owners. DPO’s and SIRO’s, it is supported in its development by ISfL (the London WARP), SW WARP and HP WARP at this time.
We are now accepting data from public sector organisations to the Alpha, if you send us your 100-150 top outbound email domains, we will check their TLS and DMARC for you so you can baseline your risks and give your users guidnace, please use the form below to enrol for zED, and someone will be in contact soonest.

 

If your or your organisation is a WARP member we will be posting data on the gov.uk domains via updates to WARPs upon request.
Code: in development now and running on AWS (London) Ubuntu Server 18.04 LTS (HVM), using Bash and Perl, coded by @cryptomoose, using the mighty @SwaksSMTP  for TLS testing with words by @waoaoms