A comprehensive web security scanner with advanced file leak detection, confidence scoring, and forensic analysis capabilities.
# Install the tap
brew tap smundhra-git/explain
# Install webtest
brew install webtest# Check version
webtest --version
# Get help
webtest --helpwebtest https://example.comwebtest --full https://example.comwebtest --full --output report.html https://example.comwebtest --full \
--timeout 60 \
--threads 20 \
--verbose \
--output detailed_report.html \
https://example.com- Confidence scoring (0-100%) for accurate results
- Baseline 404 detection to eliminate false positives
- Regex-based pattern matching for better detection
- Automatic quarantine of real leaks for forensic analysis
- Directory Enumeration - Find sensitive directories and files
- Information Leakage - Detect exposed configuration files
- SSL/TLS Configuration - Check certificate and encryption
- Security Headers - Verify security header implementation
- CORS Configuration - Test cross-origin resource sharing
- Server Fingerprinting - Identify server technologies
- DDoS Protection - Test rate limiting and WAF
- XSS Vulnerabilities - Detect reflected XSS
- Open Redirects - Find redirect vulnerabilities
- CSRF Protection - Check form security
- JavaScript Libraries - Identify outdated libraries
- Subdomain Enumeration - Discover subdomains
- Real-time progress with rich terminal output
- HTML reports with detailed findings
- Severity classification (Critical, High, Medium, Low, Info)
- Evidence collection for each finding
.env → ✅ Real leak [confidence: 95%] → Contains DB credentials
web.config → ✅ Real leak [confidence: 92%] → Contains <configuration> tags
config.php → ✅ False positive [confidence: 94%] → 200 OK but no sensitive content
admin/ → ✅ Exists but access denied (safe)
Real file leaks are automatically quarantined for forensic analysis:
leaks/
├── files/ # Quarantined leak files
└── metadata/ # Analysis metadata
| Option | Short | Description | Default |
|---|---|---|---|
--full |
-f |
Run all security checks | False |
--timeout |
-t |
Request timeout in seconds | 30 |
--threads |
-j |
Number of concurrent threads | 10 |
--verbose |
-v |
Verbose output | False |
--output |
-o |
HTML report path | None |
--version |
-V |
Show version and exit | False |
--help |
-h |
Show help and exit | False |
dir_enum- Directory enumerationinfoleak- Information leakagessl- SSL/TLS configurationheaders- Security headerscors- CORS configurationfingerprint- Server fingerprintingddos- DDoS protectionxss- XSS vulnerabilitiesredirect- Open redirectscsrf- CSRF protectionlibs- JavaScript librariessubdomain- Subdomain enumeration
This tool is designed for:
- ✅ Security professionals conducting authorized assessments
- ✅ Developers testing their own applications
- ✅ Security researchers with proper authorization
Do not use this tool for:
- ❌ Unauthorized security testing
- ❌ Attacking websites you don't own
- ❌ Any malicious activities
# Clone the repository
git clone https://github.com/smundhra-git/webtest.git
cd webtest
# Install dependencies
pip3 install -r webTest/requirements.txt
# Run directly
python3 webTest/cli.py https://example.com --full-scan# Test enhanced verification
python3 webTest/tests/test_enhanced_verification.py
# Test file verification
python3 webTest/tests/test_file_verification.py- Fast scanning with concurrent requests
- Smart verification - Only GET requests for 200 responses
- Efficient detection - HEAD-first approach reduces bandwidth
- Scalable architecture - Handles large-scale scans
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests
- Submit a pull request
This project is licensed under the MIT License - see the LICENSE file for details.
- Issues: GitHub Issues
- Documentation: GitHub Wiki
WebTest - Enterprise-grade web security scanning made simple! 🚀