{"id":29001695,"url":"https://github.com/wallacescott240/darkscorpion","last_synced_at":"2025-06-25T09:11:36.525Z","repository":{"id":300974011,"uuid":"1007762162","full_name":"WallaceScott240/DarkScorpion","owner":"WallaceScott240","description":"DarkScorpion is a powerful GUI-based Python tool for scanning websites for common security vulnerabilities. With a modern dark-themed interface, it provides detailed analysis of XSS, SQL Injection, open redirects, security header misconfigurations, and SSL/TLS issues — all in one convenient application.","archived":false,"fork":false,"pushed_at":"2025-06-24T13:58:57.000Z","size":19901,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-06-24T14:45:55.464Z","etag":null,"topics":["cybersecurity","python","risk-assessment","vulnerability-scanners"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/WallaceScott240.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-06-24T13:43:41.000Z","updated_at":"2025-06-24T13:59:00.000Z","dependencies_parsed_at":"2025-06-24T14:45:56.725Z","dependency_job_id":"419ab0d6-40e7-4166-a3ad-aac9be393821","html_url":"https://github.com/WallaceScott240/DarkScorpion","commit_stats":null,"previous_names":["wallacescott240/darkscorpion"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/WallaceScott240/DarkScorpion","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WallaceScott240%2FDarkScorpion","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WallaceScott240%2FDarkScorpion/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WallaceScott240%2FDarkScorpion/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WallaceScott240%2FDarkScorpion/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/WallaceScott240","download_url":"https://codeload.github.com/WallaceScott240/DarkScorpion/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/WallaceScott240%2FDarkScorpion/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":261841967,"owners_count":23217920,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cybersecurity","python","risk-assessment","vulnerability-scanners"],"created_at":"2025-06-25T09:11:35.138Z","updated_at":"2025-06-25T09:11:36.512Z","avatar_url":"https://github.com/WallaceScott240.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🦂 DarkScorpion - Advanced Web Vulnerability Scanner\n\n**DarkScorpion** is a powerful GUI-based Python tool for scanning websites for common security vulnerabilities. With a modern dark-themed interface, it provides detailed analysis of XSS, SQL Injection, open redirects, security header misconfigurations, and SSL/TLS issues — all in one convenient application.\n\n---\n\n## 🧰 Features\n\n- 🔍 **Scan Options**\n  - XSS (Cross-Site Scripting)\n  - SQL Injection\n  - Open Redirects\n  - Missing Security Headers\n  - SSL/TLS Misconfigurations\n\n- 💡 **Interactive Interface**\n  - Built with `Tkinter` and `ttk` themes\n  - Clean dark UI with a dual-tabbed output: `Scan Report` and `Vulnerabilities`\n  - Live progress updates and scan timing\n\n- 🧠 **Smart Detection**\n  - Includes advanced XSS and SQLi payloads\n  - SSL certificate expiration and protocol checks\n  - Detects cookie misconfigurations (e.g., missing Secure/HttpOnly flags)\n\n- 📤 **Reporting**\n  - Save scan results to `.txt` or `.html`\n  - Color-coded severity levels: Critical, High, Medium, Low, Info\n\n---\n\n## 🖥️ Requirements\n\n- **Python 3.7+**\n- Required Python libraries:\n\n```bash\npip install requests beautifulsoup4\n```\n\n---\n\n## 🛠️ How to Use\n\n1. **Run the Application**\n\n```bash\npython soup.py\n```\n\n2. **Enter Target URL**  \n   Example: `https://www.example.com`\n\n3. **Select Scan Options**  \n   ✅ XSS, SQLi, Redirects, Headers, SSL (toggle as needed)\n\n4. **Click \"Start Scan\"**  \n   - Scan progress will update in real-time\n   - Results appear in the `Scan Report` tab\n   - Detected vulnerabilities are listed in the `Vulnerabilities` tab\n\n5. **Save or Clear Results**\n   - Click \"Save Report\" to export your findings\n   - Click \"Clear Results\" to reset the session\n\n---\n\n## 📄 Sample Output\n\n![Fox Logo](https://i.postimg.cc/43HbQ6tH/Screenshot-2025-06-24-191151.png) \n![Fox Logo](https://i.postimg.cc/c4Nxx0Tp/Screenshot-2025-06-24-191650.png) \n\n---\n\n## 🔐 Security Checks\n\n- **SSL/TLS**  \n  - Verifies certificate validity and expiry\n  - Detects outdated protocols (TLS 1.0/1.1)\n\n- **Cookies**  \n  - Detects missing `Secure` and `HttpOnly` flags\n\n- **HTTP Headers**  \n  - Reports missing:\n    - `Content-Security-Policy`\n    - `X-Frame-Options`\n    - `Strict-Transport-Security`\n    - `X-Content-Type-Options`\n    - `Referrer-Policy`\n\n---\n\n## ⚠️ Disclaimer\n\nThis tool is for **educational and authorized security testing purposes only**. Do **not scan websites** without **explicit permission**. Unauthorized use may be illegal and unethical.\n\n---\n\n## 💻 Developer Notes\n\n- Built using:\n  - `Tkinter`, `ttk`, `requests`, `BeautifulSoup`, `ssl`, `socket`, and `re`\n- Payloads included for real-world vulnerability testing\n- Progress bar and status indicators help track scanning activity\n\n---\n\n## 📬 Feedback \u0026 Contributions\n\nFeel free to fork, open issues, or suggest improvements.\n\n---\n© 2025 DarkScorpion — Stay Secure 🛡️\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwallacescott240%2Fdarkscorpion","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwallacescott240%2Fdarkscorpion","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwallacescott240%2Fdarkscorpion/lists"}