## https://sploitus.com/exploit?id=FDA78F7F-A3F2-585B-AB78-B6CEF5F7963C
Web Vulnerability Scanner
A Python-based tool designed for ethical security testing to identify common web vulnerabilities on websites. This tool is intended for use only on websites you own or have explicit permission to test. Unauthorized use is illegal and unethical.
Features
Scans for 21+ common web vulnerabilities, including:
SQL Injection
Cross-Site Scripting (XSS)
Cross-Site Request Forgery (CSRF)
Open Redirect
Insecure HTTP Methods
Missing Security Headers
Directory Traversal
Remote Code Execution (RCE)
Server-Side Request Forgery (SSRF)
Local File Inclusion (LFI)
Sensitive Data Exposure
And more!
Proxy-free operation for direct and efficient scanning.
User-friendly colored terminal output.
Detailed vulnerability reporting with type, URL, and details.
Compatible with Kali Linux and Debian-based systems.
Installation
Clone the repository:git clone https://github.com//.git
Navigate to the project directory:cd
Install the required Python dependencies:pip3 install requests beautifulsoup4
Usage
Make the script executable:chmod +x web_scanner.py
Run the scanner:./web_scanner.py
Enter the target URL (e.g., http://your-own-site.com) when prompted.
Review the scan results displayed in the terminal.
Example
$ ./web_scanner.py
============================================================
web vuln scanner
Yazan: canmitm
Instagram: @canmitm
============================================================
UYARI: Yapılacak herhangi bir işten aracı yazan kişi sorumlu değildir!! güvenlik testleri icin yazılmış bir araçtır amacı dışında kullanmayınız!! // writed by:/canmitm
Test edilecek hedef URL'yi girin (ör. http://example.com): http://test-site.com
Testler başlatılıyor: http://test-site.com
[!] Zafiyet Bulundu: XSS - URL: http://test-site.com?q=alert('XSS') - Detay: Potansiyel XSS: alert('XSS')
...
=== Tarama Raporu ===
Toplam 2 zafiyet bulundu:
- XSS | URL: http://test-site.com?q=alert('XSS') | Detay: Potansiyel XSS: alert('XSS')
- RCE | URL: http://test-site.com?cmd=%3Bid | Detay: Potansiyel RCE: ;id - Sistem komutu çıktısı tespit edildi!
Requirements
Python 3.x
Libraries: requests, beautifulsoup4
Tested on Kali Linux and Debian-based systems
Ethical Use
This tool is developed for educational and ethical purposes only. Use it only on systems you have explicit permission to test. Unauthorized scanning of websites is illegal and may result in severe legal consequences. The author is not responsible for any misuse of this tool.
Contributing
Contributions are welcome! Please submit a pull request or open an issue for suggestions, bug reports, or additional vulnerability tests.
Author
Written by: canmitm
Instagram: @canmitm
License
This project is licensed under the MIT License. See the LICENSE file for details.