🔥 v1.0 — local AI security scanner

Am I Cooked?

One command to scan your local AI setup for security and privacy risks. Ollama, LM Studio, text-gen-webui, and more.

$ curl -fsSL iscooked.com/iscooked.com | bash

Runs locally. Sends nothing anywhere. Ever.

What it scans

🌐
Network Exposure
Is Ollama or LM Studio listening on 0.0.0.0 instead of localhost?
🔑
API Authentication
Are your AI endpoints running wide open without any auth?
📁
File Permissions
Model files and .env files world-readable or writable?
🐳
Docker Risks
AI containers running as root? Privileged mode? Host network?
🎮
GPU Exposure
NVIDIA/AMD driver endpoints and device permissions.
📡
Telemetry
Are your tools phoning home to known telemetry endpoints?
🛡️
Firewall Status
UFW, firewalld, iptables — is anything actually running?
🔒
SSL/TLS
AI services running over plain HTTP on non-localhost?
⚙️
Process Audit
What AI processes are running and as which user?
🔓
Sensitive Files
.env files with API keys exposed? Model dirs readable by others?
📜
History & Logs
API keys in shell history? AI logs world-readable?
🦙
Ollama Config
OLLAMA_HOST, OLLAMA_ORIGINS, systemd service user checks.

Example output

bash — iscooked.com
Am I Cooked? — Local AI Security Scanner v1.0.0 [01] Network Exposure ──────────────────────────────────────────── 🔥 COOKED Ollama (port 11434) is listening on ALL interfaces ✅ SAFE LM Studio (port 1234) is bound to localhost only [02] API Authentication ──────────────────────────────────────────── ⚠ WARMING UP Ollama API is responding without authentication [07] Firewall Status ──────────────────────────────────────────── 🔥 COOKED No active firewall detected! [11] History & Logs Leakage ──────────────────────────────────────────── 🔥 COOKED Shell history contains ~3 potential API key(s) ────────────────────────────────────────────────── YOUR COOKED SCORE 73% cooked [██████████████████████████████ ] FULLY COOKED 3 critical 1 warnings 2 passed You are absolutely cooked. Fix the critical issues above ASAP.

Find out if you're cooked

Takes 5 seconds. No install. No dependencies. No data leaves your machine.

View on GitHub