badkeys
« Back to VersTracker
Description:
Tool to find common vulnerabilities in cryptographic public keys
Type: Formula  |  Latest Version: 0.0.15@0  |  Tracked Since: Dec 17, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security cryptography key-analysis vulnerability-scanning penetration-testing
Install: brew install badkeys
About:
badkeys is a command-line tool designed to scan public cryptographic keys for known vulnerabilities and weaknesses. It can detect compromised keys from the recent CISA Bad Keys list, weak RSA primes, and other common implementation flaws. The tool helps security professionals identify and remediate insecure keys across their infrastructure.
Key Features:
  • Detects CISA Bad Keys list vulnerabilities
  • Analyzes RSA key strength and prime quality
  • Supports multiple key formats (PEM, SSH, JWK)
  • Fast batch scanning capabilities
  • Open source and extensible
Use Cases:
  • Auditing existing SSH keys for known vulnerabilities
  • Validating newly generated keys before deployment
  • Incident response when checking for compromised keys
  • Compliance scanning for cryptographic assets
Alternatives:
  • ssh-audit – Focuses on SSH server configuration rather than key vulnerabilities
  • OpenSSL – General-purpose crypto toolkit, lacks specialized bad key detection
License: MIT
Dependencies: cryptography, gmp, libmpc, mpfr, python@3.14
Bottles available for: arm64_tahoe, arm64_sequoia, arm64_sonoma, sonoma, arm64_linux, x86_64_linux
Version History
Detected Version Rev Change Commit
Nov 7, 2025 11:09pm 0 VERSION_BUMP 42d0723e
Nov 7, 2025 2:50pm 0 VERSION_BUMP 62ace3b4
Oct 27, 2025 11:42pm 0 VERSION_BUMP c9ea32f1
Sep 13, 2025 11:37am 0 VERSION_BUMP f3b0a54a
Oct 12, 2024 7:36pm 0 VERSION_BUMP 290a106c
Oct 12, 2024 2:57pm 0 VERSION_BUMP 4c824c32
« Back to VersTracker  |  Browse Packages  |  About