A Python-based vulnerability scanner to identify open ports and web application security risks. Features include port scanning, HTTP header analysis, and report generation via CLI or GUI.
Description: A Python-based vulnerability scanner that helps identify potential security risks in networks and web applications.
This project performs:
- Port Scanning: Identifies open ports on target systems using the nmap library.
- Web Vulnerability Scanning: Checks for common HTTP header misconfigurations (e.g., missing XSS protection, CSP, or HSTS headers).
- Result Reporting: Generates and saves detailed scan reports for analysis.
Features:
- Interactive CLI and GUI interfaces for user interaction.
- Network scanning capabilities to detect open ports and their states.
- Web application scanning for missing security headers.
- Report generation in a readable format.
Tech Stack:
- Python: Programming language.
- Libraries: python-nmap, requests, tkinter.
Future Enhancements:
- Add multi-threading for faster scanning.
- Integrate a database for logging results.
- Expand web vulnerability checks to include SQL injection and directory brute-forcing.
- Incorporate CVE database integration for known vulnerabilities.