PenTest Hub is a lightweight and modular web vulnerability scanner designed for penetration testers, cybersecurity students, and security researchers.
It allows you to quickly scan a target website for common web vulnerabilities and generate detailed HTML and PDF reports.
- SQL Injection Detection
- Cross-Site Scripting (XSS) Detection
- Cross-Site Request Forgery (CSRF) Detection
- HTTP Security Headers Inspection
- Insecure Direct Object References (IDOR) Testing
- Directory Traversal Vulnerability Scanning
- Open Redirect Testing
- Cookie Security Analysis (Secure, HttpOnly, SameSite)
- Authentication Security Testing
- JavaScript Sensitive Information Leakage Scan
- Server-Side Request Forgery (SSRF) Detection
- Remote Code Execution (RCE) Detection
- Dynamic and professional report generation (HTML & PDF)
- Clean terminal interface with a real-time progress bar
- Python 3.8+
- Libraries:
requestscoloramabeautifulsoup4pdfkittqdm
- wkhtmltopdf installed for PDF report generation
-
Clone the repository:
git clone https://github.com/a360n/pentesthub.git cd pentesthub -
Install the required Python libraries:
pip install -r requirements.txt
-
Make the main script executable (Linux/macOS):
chmod +x pentesthub.py
-
(Optional) Install
wkhtmltopdffor PDF report support:- macOS:
brew install wkhtmltopdf
- Linux:
sudo apt install wkhtmltopdf
- macOS:
Simply run the tool:
./pentesthub.py