A web-based vulnerability scanner that combines static analysis (Bandit), dynamic analysis (OWASP ZAP), and custom CVE pattern matching to analyze websites and uploaded files for security issues.
- π Website Scanner using OWASP ZAP (Quick/Thorough modes)
- π§ͺ File Scanner using Bandit with custom rules
- π CVE Matcher for identifying known vulnerabilities using regex
- π HTML Report Generator for readable vulnerability reports
- π₯οΈ Simple Web Interface to scan files or URLs easily
- π¦ Modular codebase for easy extension
Here are some snapshots of the project:
git clone https://github.com/kavyapurushottama/VulnerabilityScanner.git
cd vulnerability-scannerpython setup.py
python web_interface.pypython main.py --path your/code/path --url http://your-target-url.com