Share 
## https://sploitus.com/exploit?id=7E9AB78A-EC36-5B66-A8F9-1A52F13CAF8E
# πŸ” VulnAnalyzer 2.1

**A comprehensive automated vulnerability detection and analysis platform**

Supports manual code analysis and automatic website scanning. Features 17+ vulnerability type detection engines, and automatically generates test PoCs. ![Version](https://img.shields.io/badge/version-2.1-blue)  
![Python](https://img.shields.io/badge/python-3.8+-green)  
![License](https://img.shields.io/badge/license-Educational%20Use-red)

---

## πŸ“‹ Quick Navigation

- [Features](#Features)
- [Quick Start](#QuickStart)
- [Usage Guide](#UsageGuide)
- [Detection Capabilities](#DetectionCapabilities)
- [FAQs](#FAQs)

---

## 🎯 Features

### Core Features

βœ… **Two working modes**
- **Manual Analysis**: Paste code/HTTP requests, detect vulnerabilities in real time.
- **Automatic Scanning**: Enter a URL, the system automatically crawls the website and detects all vulnerabilities.

βœ… **Automated Processes**
- Automatic website crawling (identifying forms, parameters, links).
- Intelligent parameter extraction.
- Automatic vulnerability detection.
- Generate reports with one click.

βœ… **Intelligent Analysis**
- Detects 17+ types of vulnerabilities.
- Heuristic matching + code pattern recognition.
- Automatically generate PoCs.
- Classification of risk levels.

βœ… **Complete Reports**
- Export in JSON/Markdown format.
- References to CWE/OWASP standards.
- Guidance on validation steps.
- Recommendations for fixes.

---

## πŸš€ Quick Start

### System Requirements

- Python 3.8+
- pip package manager

### Installation Steps

```bash
# 1. Create a directory and download files
mkdir vulnanalyzer
cd vulnanalyzer

# Download the following files:
# app.py
# vuln_analyzer.py
# crawler.py
# static_index.html (rename to index.html)

# 2. Create a static folder
mkdir static
mv index.html static/

# 3. Install dependencies
pip install flask requests

# 4. Start the service
python app.py

# 5. Open a browser
# http://127.0.0.1:5000
```

---

## πŸ“– Usage Guide

### Mode 1: Manual Analysis (Manual Mode)

1. Open the web page, select the β€œManual” tab.
2. Paste code/HTTP requests.
3. Click β€œAnalyze”.
4. View the detection results.

**Supported Input Types:**
- HTTP requests (GET/POST/PUT/DELETE, etc.).
- HTML source code.
- Code snippets in Java/Python/PHP/JavaScript.

**Example Input:**
```http
POST /admin/upload?id=1&redirect=http://evil.com HTTP/1.1
Host: example.com
Content-Type: application/x-www-form-urlencoded

username=admin&password=password
```

### Mode 2: Automatic Scanning (Scan Mode)

1. Click the β€œScan” tab.
2. Enter the target URL (e.g., `https://example.com`).
3. Set the maximum number of pages to scan (default: 30).
4. Click β€œScan Target”.
5. Wait for the scan to complete.

---

## πŸ” Detection Capabilities

### Vulnerability Types (17+)

| Vulnerability Type | Risk Level | Detection Method |
|-------------------|------------|------------------|
| XSS | High | DOM sink, parameter reflection |
| SQL Injection | High | String concatenation, error messages |
| Command Injection | High | Runtime/ProcessBuilder |
| Path Traversal | High | ../ sequence detection |
| SSRF | High | URL construction, private network detection |
| Redirect Hijacking | Medium | Redirect parameter analysis |
| File Upload | High | Form validation |
| XXE | Critical | DOCTYPE detection |
| Deserialization | Critical | ObjectInputStream |
| CORS Errors | Medium | Wildcard detection |
| Sensitive Information Leakage | High | API Key, key recognition |
| Authorization Bypass | High | Parameter direct control, sensitive routes |
| Encryption Vulnerabilities | High | ECB, MD5, weak TLS |
| Log Injection | Medium | Log concatenation detection |
| SpEL Injection | Critical | Expression parsing |
| Unsafe Reflection | Critical | Class.forName |
| Missing Security Headers | Low | Response header checks |

---

### Each Vulnerability Includes

- **Location Information** – Indicates the exact location of the vulnerability.
- **Evidence** – Explains why this vulnerability is considered present.
- **Verification Steps** – Instructions on how to further verify it.
- **Proof-of-Copy** – Automatically generated test code.
- **CWE/OWASP Standards** – Reference standards.

---

## πŸ”Œ API Documentation

### POST /analyze

Manual code analysis.

```bash
curl -X POST http://127.0.0.1:5000/analyze \
  -H "Content-Type: application/json" \
  -d '{
    "text": "GET /admin?id=1 HTTP/1.1",
    "min_risk": "info",
    "types": ["XSS", "SQL Injection"]
  }'
```

**Parameters:**
- `text` (String) – Code/request to be analyzed.
- `min_risk` (String) – Minimum risk level: info, low, medium, high, critical.
- `types` (Array) – Only detect specified types; if empty, all types will be checked.

### POST /crawl

Website crawling and parameter extraction.

```bash
curl -X POST http://127.0.0.1:5000/crawl \
  -H "Content-Type: application/json" \
  -d '{
    "target": "https://example.com",
    "max_pages": 30
  }'
```

### POST /scan-target

Full automatic scanning.

```bash
curl -X POST http://127.0.0.1:5000/scan-target \
  -H "Content-Type: application/json" \
  -d '{
    "target": "https://example.com",
    "min_risk": "info"
  }'
```

---

## πŸ“Š PoC Examples

### XSS
```javascript
" onmouseover="alert(1)" x="
alert(1)
```

### SQL Injection
```sql
' OR '1'='1
' UNION SELECT 1,2,3,4-- -
' AND SLEEP(5)-- -
```

### Command Injection
```bash
; id;
| cat /etc/passwd
&& sleep 5
```

### Path Traversal
```
../../../etc/passwd
..\..\..\..\windows\win.ini
..%2F..%2F..%2Fetc%2Fpasswd
```

---

## βš™οΈ Project Structure

```
vulnanalyzer/
β”œβ”€β”€ app.py                    # Flask server
β”œβ”€β”€ vuln_analyzer.py         # Detection engine (2000+ lines)
β”œβ”€β”€ crawler.py               # Website crawler
β”œβ”€β”€ static/
β”‚   └── index.html          # Front-end UI
β”œβ”€β”€ README.md               # Documentation
└── QUICKSTART.md           # Quick start guide
```

---

## ❓ Frequently Asked Questions

### Q: Why are there so many vulnerability detections? A: VulnAnalyzer uses heuristic detection, which may have false positives. It’s recommended to filter by risk level and use PoC for manual verification. ### Q: Does it support HTTPS? A: Yes, SSL verification is skipped by default. You can enable it by setting `verify_ssl=True` in `crawler.py`. ### Q: Does it support JavaScript rendering? A: No. The crawler only parses static HTML. ### Q: Can it scan websites that require login? A: Not currently supported. This feature will be added in future versions. ### Q: How do I add new vulnerability types? A: Edit `vuln_analyzer.py` and add new `analyze_xxx()` functions.

---

## ⚠️ Legal Statement

**This tool is used solely for authorized security testing.**

- βœ… For personal projects.
- βœ… For targets that have been properly authorized.
- ❌ Scanning of unauthorized websites is illegal.

---

## πŸ™ Thanks

Thanks to OWASP, CWE, and the Flask community. ---

**VulnAnalyzer v2.1** | Educational Use Only

Last updated: 2025-06-14

[source-iocs-preserved url=https://example.com`οΌ‰]