Vigil — Passive Surface AuditBy RoseLeap · Est. 2026System Live

Fig. 01 — The Instrument

See what attackers see.

A passive security check for your website — read the way an adversary reads it. No login, no install. A grade and the findings, in under a minute.

Passive only — headers · TLS · cookies · exposed paths · CORS.
Vigil never logs in or attacks your site.

PASSIVE · SURFACEVIGIL OPTICS · v0.1

AWAITING TARGET

ChecksSecurity headers · TLS / certificate · Cookie flags · Information leakage · Exposed paths · CORS
Mapped toMITRE ATT&CK · NIST CSF 2.0 · MITRE D3FEND
MethodPassive, unauthenticated. Rate-limited. No exploitation.