{"id":25131996,"url":"https://github.com/taleblou/urlvulnerabilityscanner_python","last_synced_at":"2025-04-03T00:11:50.743Z","repository":{"id":272729340,"uuid":"917570159","full_name":"taleblou/URLVulnerabilityScanner_Python","owner":"taleblou","description":" This Python script scans URLs for vulnerabilities like SQL injection, XSS, open ports, weak session management, and more. It generates a CSV report with detailed findings. Use it for authorized security testing to identify risks and improve website defenses.","archived":false,"fork":false,"pushed_at":"2025-01-16T08:40:15.000Z","size":8,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-02-08T14:16:11.181Z","etag":null,"topics":["authorized","injection","vulnerabilities","xss"],"latest_commit_sha":null,"homepage":"https://taleblou.ir/","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/taleblou.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2025-01-16T08:38:13.000Z","updated_at":"2025-01-16T08:41:06.000Z","dependencies_parsed_at":"2025-01-16T10:01:42.003Z","dependency_job_id":"eb971b0a-b670-4664-88ef-73109d649da4","html_url":"https://github.com/taleblou/URLVulnerabilityScanner_Python","commit_stats":null,"previous_names":["taleblou/urlvulnerabilityscanner_python"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/taleblou%2FURLVulnerabilityScanner_Python","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/taleblou%2FURLVulnerabilityScanner_Python/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/taleblou%2FURLVulnerabilityScanner_Python/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/taleblou%2FURLVulnerabilityScanner_Python/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/taleblou","download_url":"https://codeload.github.com/taleblou/URLVulnerabilityScanner_Python/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246911470,"owners_count":20853657,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["authorized","injection","vulnerabilities","xss"],"created_at":"2025-02-08T14:16:15.018Z","updated_at":"2025-04-03T00:11:50.716Z","avatar_url":"https://github.com/taleblou.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"## **URL Vulnerability Scanner**\n\nThis script scans a given URL for common vulnerabilities and generates a detailed vulnerability report in CSV format. It performs various security checks, including SQL injection, XSS, directory traversal, open ports, and more.\n\n---\n\n## **Features**\n\n1. **SQL Injection Detection**: Identifies SQL vulnerabilities by injecting common payloads.  \n2. **Cross-Site Scripting (XSS)**: Detects possible XSS vulnerabilities using common scripts.  \n3. **Directory Traversal**: Tests for access to restricted directories.  \n4. **Open Directory Check**: Scans for open directory indexes.  \n5. **Subdomain Discovery**: Identifies accessible subdomains.  \n6. **Port Scanning**: Checks for open ports like 21, 22, 80, 443, 8080\\.  \n7. **Sensitive Endpoint Discovery**: Searches for exposed sensitive endpoints.  \n8. **HTTP Security Headers**: Analyzes the presence of essential HTTP security headers.  \n9. **Command Injection**: Tests for command execution vulnerabilities.  \n10. **CSRF Token Check**: Detects forms without anti-CSRF tokens.  \n11. **SSL/TLS Configuration**: Validates SSL certificates and checks expiration.  \n12. **Open Redirect**: Identifies potential redirect vulnerabilities.  \n13. **File Upload Vulnerabilities**: Tests upload functionality for security flaws.  \n14. **Directory Enumeration**: Enumerates common directories for accessibility.  \n15. **Weak Session Management**: Verifies secure cookie flags.  \n16. **Exposed API Endpoints**: Discovers unprotected API endpoints.  \n17. **Access Control Flaws**: Checks for unauthorized access to restricted areas.  \n18. **Parameter Tampering**: Verifies server behavior on modified parameters.  \n19. **Rate Limiting**: Checks for rate-limiting mechanisms.\n\n---\n\n## **Requirements**\n\n* **Python 3.6+**  \n* Libraries:  \n  * `requests`  \n  * `pandas`  \n  * `urllib.parse`  \n  * `socket`  \n  * `ssl`\n\n---\n\n## **Installation**\n\n1. Clone the repository or download the script.\n\nInstall dependencies using pip:  \nbash  \nCopy code  \n`pip install requests pandas`\n\n2. \n\n---\n\n## **Usage**\n\n1. Replace the `target_url` variable with the URL you want to scan.\n\nRun the script:  \nbash  \nCopy code  \n`python vulnerability_scanner.py`\n\n2.   \n3. The results will be saved to `vulnerability_report.csv`.\n\n---\n\n## **Configuration**\n\n* **Output File**: Set the `output_file` parameter to specify the CSV file name.  \n* **Custom Payloads**: Modify the payload lists in the script for SQL, XSS, command injection, etc., to include custom tests.  \n* **Subdomains and Endpoints**: Edit the `subdomains` and `endpoints` lists to include more test cases.\n\n---\n\n## **Notes**\n\n* Ensure you have permission to scan the target domain. Unauthorized scanning may violate laws or terms of service.  \n* The script provides a basic vulnerability scan and should not replace comprehensive security testing.\n\n---\n\n## **Example Output**\n\nA sample `vulnerability_report.csv` might look like this:\n\n| URL | Vulnerability Type | Payload | Details |\n| ----- | ----- | ----- | ----- |\n| https://example.com?test=' | SQL Injection | `'` | Detected SQL syntax error. |\n| https://example.com/upload | File Upload | `test.php` | Uploaded PHP file executed. |\n| https://admin.example.com | Exposed Subdomain | `N/A` | Subdomain is accessible. |\n| https://example.com:443 | Open Port | `Port 443` | Port 443 is open. |\n\n---\n\n## **Disclaimer**\n\nThis tool is for educational and authorized testing purposes only. Do not use it on systems you do not own or have explicit permission to test.\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftaleblou%2Furlvulnerabilityscanner_python","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftaleblou%2Furlvulnerabilityscanner_python","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftaleblou%2Furlvulnerabilityscanner_python/lists"}