{"id":18913326,"url":"https://github.com/londonmax12/hyperz-scanner","last_synced_at":"2025-04-15T08:30:47.603Z","repository":{"id":228586904,"uuid":"774342717","full_name":"londonmax12/HyperZ-Scanner","owner":"londonmax12","description":"Web Application Vulnerability Scanner Written in Python 🚀","archived":false,"fork":false,"pushed_at":"2024-03-21T12:31:50.000Z","size":30,"stargazers_count":4,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-28T18:50:39.894Z","etag":null,"topics":["cybersecurity","vulnerability-detection","vulnerability-scanner","vulnerability-scanners","vulnerability-scanning"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/londonmax12.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2024-03-19T11:37:23.000Z","updated_at":"2024-11-11T05:20:28.000Z","dependencies_parsed_at":"2024-03-20T16:12:05.050Z","dependency_job_id":null,"html_url":"https://github.com/londonmax12/HyperZ-Scanner","commit_stats":null,"previous_names":["londonmax12/hyperz-scanner"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/londonmax12%2FHyperZ-Scanner","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/londonmax12%2FHyperZ-Scanner/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/londonmax12%2FHyperZ-Scanner/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/londonmax12%2FHyperZ-Scanner/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/londonmax12","download_url":"https://codeload.github.com/londonmax12/HyperZ-Scanner/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":249035272,"owners_count":21202047,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","vulnerability-detection","vulnerability-scanner","vulnerability-scanners","vulnerability-scanning"],"created_at":"2024-11-08T10:06:36.939Z","updated_at":"2025-04-15T08:30:47.355Z","avatar_url":"https://github.com/londonmax12.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🚀 HyperZ Vulnerability Scanner\nHyperZ is a work-in-progress web application vulnerability scanner designed to crawl through a website and identify potential security issues. It can be used to discover sensitive information disclosure, and other common vulnerabilities.\n## 📥 Installation\n1. Clone the repository \n```\ngit clone https://github.com/londonmax12/hyperz-scanner\n```\n2. Install required dependencies\n```\npip install -r requirements.txt\n```\n## 📝 Usage\n1. Run the scanner using the following command\n```\npython hyperz.py -u \u003curl\u003e [-d \u003cdepth\u003e] [-v] [-p \u003cproxy_list\u003e] [-g] [-t \u003ctimeout\u003e] [-o \u003coutput_file\u003e]\n\n```\n2. View results in the specified report file generated\n### ⚙️ Command Options\n- -u, --url \u003curl\u003e: URL to scan (required).\n- -d, --depth \u003cdepth\u003e: Depth limit for crawling (default: 5).\n- -v, --verbose: Enable verbose output.\n- -p, --proxy_list \u003cproxy_list\u003e: File that contains a list of proxies to use.\n- -g, --get_proxies: Get proxies to use from: https://www.sslproxies.org/.\n- -t, --timeout \u003ctimeout\u003e: Timeout on website requests (default: 5).\n- -o, --output_file \u003coutput_file\u003e: Specify the output file for the report (default: report.json).\n### 🌐 Example\nScan example.com with a depth limit of 3 and save the report to \"output.json\":\n```\npython hyperz.py -u http://example.com -d 3 -o output.json\n```\n## 🛠️ Development Roadmap\n### ✅ Features Added\n- URL Crawling\n    - Simple URL crawling that retrieves all href anchor tags from a specified link\n- Proxy support\n    - Dynamic proxy fetching\n    - Proxy file\n- Header Security Analysis \n    - Ability to scan request headers for potential vulnerabilities and ensure they are properly configured to prevent common attacks\n- Report Generation\n    - Report specifications\n    - Vulnerabilities found and effect URLs\n### 🚧 Features To Be Added\nThe following features are currently **NOT** added. This simply serves as a roadmap\n- Input Validation Testing\n    - Other input payload attacks\n- Authentication Testing\n    - Check strength of authentication mechanism\n        - Presence of default credentials\n    - Check for weak password policies\n- Session Management Testing\n    - Analyse how session tokens are generated, and transfered\n    - Check for session related vulnerabilities\n- Authorisation\n    - Check if users can access resourses they are not meant to\n- Sensitive Data Exposure\n    - Indentify areas where sensitive data might be exposed\n- Specific Attack Testing\n    - SQL Injection\n    - Cross-Site Scripting\n    - Cross-Site Request Forgery Testing\n    - Clickjacking testing\n    - Open Redirect Testing\n- SSL/TLS Testing\n    - Verify configuration of SSL/TLS certificates\n- API Security Testing\n    - API Fuzzing\n- Out-of-date Software testing\n    - Identify software versions that may contain known vulnerabilities\n## 🤝 Contributing\nContributions are welcome and appreciated! Please fork the repository and submit a pull request with your changes. \u003c3\n## 📄 License\nThis project is licensed under the MIT License","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flondonmax12%2Fhyperz-scanner","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flondonmax12%2Fhyperz-scanner","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flondonmax12%2Fhyperz-scanner/lists"}