Share
## https://sploitus.com/exploit?id=FDA78F7F-A3F2-585B-AB78-B6CEF5F7963C
Web Vulnerability Scanner
A Python-based tool designed for ethical security testing to identify common web vulnerabilities on websites. This tool is intended for use only on websites you own or have explicit permission to test. Unauthorized use is illegal and unethical.
Features

Scans for 21+ common web vulnerabilities, including:
SQL Injection
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Open Redirect
Insecure HTTP Methods
Missing Security Headers
Directory Traversal
Remote Code Execution (RCE)
Server-Side Request Forgery (SSRF)
Local File Inclusion (LFI)
Sensitive Data Exposure
And more!


Proxy-free operation for direct and efficient scanning.
User-friendly colored terminal output.
Detailed vulnerability reporting with type, URL, and details.
Compatible with Kali Linux and Debian-based systems.

Installation

Clone the repository:git clone https://github.com//.git


Navigate to the project directory:cd 


Install the required Python dependencies:pip3 install requests beautifulsoup4



Usage

Make the script executable:chmod +x web_scanner.py


Run the scanner:./web_scanner.py


Enter the target URL (e.g., http://your-own-site.com) when prompted.
Review the scan results displayed in the terminal.

Example
$ ./web_scanner.py
============================================================
 web vuln scanner 
 Yazan: canmitm
 Instagram: @canmitm
============================================================
UYARI: Yapılacak herhangi bir işten aracı yazan kişi sorumlu değildir!! güvenlik testleri icin yazılmış bir araçtır amacı dışında kullanmayınız!! // writed by:/canmitm


Test edilecek hedef URL'yi girin (ör. http://example.com): http://test-site.com
Testler başlatılıyor: http://test-site.com
[!] Zafiyet Bulundu: XSS - URL: http://test-site.com?q=alert('XSS') - Detay: Potansiyel XSS: alert('XSS')
...
=== Tarama Raporu ===
Toplam 2 zafiyet bulundu:
- XSS | URL: http://test-site.com?q=alert('XSS') | Detay: Potansiyel XSS: alert('XSS')
- RCE | URL: http://test-site.com?cmd=%3Bid | Detay: Potansiyel RCE: ;id - Sistem komutu çıktısı tespit edildi!

Requirements

Python 3.x
Libraries: requests, beautifulsoup4
Tested on Kali Linux and Debian-based systems

Ethical Use
This tool is developed for educational and ethical purposes only. Use it only on systems you have explicit permission to test. Unauthorized scanning of websites is illegal and may result in severe legal consequences. The author is not responsible for any misuse of this tool.
Contributing
Contributions are welcome! Please submit a pull request or open an issue for suggestions, bug reports, or additional vulnerability tests.
Author

Written by: canmitm
Instagram: @canmitm

License
This project is licensed under the MIT License. See the LICENSE file for details.