Skip to content

a internship based project, Developed a vulnerability scanner of websites using python and built a html based website which used to enter the desired url

Notifications You must be signed in to change notification settings

GVN2307/vulnerability-scanner

Repository files navigation

VulnScan Pro 🛡️

A Simple, Powerful Website Security Checker

VulnScan Pro is a tool that helps you check if a website is safe. Think of it like a health check-up for websites. It looks for "weak spots" that hackers could use to break in or steal information.

🤔 What Does It Do?

It automatically scans a website and checks for 8 common security problems:

  1. Cross-Site Scripting (XSS): Checks if hackers can inject malicious scripts (like fake login popups).
  2. SQL Injection: Checks if someone can trick the website's database into revealing private data (like passwords).
  3. CSRF: Checks if the site protects against attackers tricking you into doing things you didn't intend (like changing your password without knowing).
  4. Security Headers: Checks if the website "tells" your browser how to keep you safe.
  5. SSL/TLS: Checks if the "padlock" icon in your browser is valid and secure (encryption).
  6. Open Redirects: Checks if the site can be used to trick users into going to a malicious website.
  7. Directory Traversal: Checks if private files on the server can be accessed.
  8. Command Injection: Checks if hackers can run commands on the server itself.

🚀 How to Run It (Simple Steps)

You don't need to be a coding expert to run this! Just follow these steps:

Prerequisites

You need to have Python installed on your computer. Download Python Here.

Step 1: Download the Project

  1. Click the green "Code" button above and select "Download ZIP".
  2. Unzip the folder to your computer.

Step 2: Install Requirements

  1. Open your computer's terminal or command prompt.
  2. Navigate to the project folder.
  3. Run this command:
    pip install -r requirements.txt

Step 3: Start the App

  1. Run this command:
    python app.py
  2. You will see a message saying "Running on http://127.0.0.1:5000".

Step 4: Use the Scanner

  1. Open your web browser (Chrome, Firefox, etc.).
  2. Go to http://127.0.0.1:5000.
  3. Type the website address (e.g., example.com) and click "Start Deep Scan".
  4. Watch the progress bar and wait for your results!

📊 Understanding the Results

When the scan finishes, you will see a report. Here is what the colors mean:

  • 🔴 Critical: Very dangerous. Needs to be fixed immediately.
  • 🟠 High: Dangerous. Hackers could do serious damage.
  • 🟡 Medium: Not good. Should be fixed soon.
  • 🔵 Low: Minor issue. Good to fix, but not an emergency.
  • 🟢 Safe: No problems found!

⚖️ Disclaimer

Please Read: This tool is for educational purposes only.

  • Do not scan websites you do not own or have permission to test.
  • Scanning websites without permission is illegal in many countries.
  • The developers are not responsible for any misuse of this tool.

Developed by: Veeranarayana Gorantla

About

a internship based project, Developed a vulnerability scanner of websites using python and built a html based website which used to enter the desired url

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published