subhammishra90/vuln-scanner
Folders and files
| Name | Name | Last commit date | ||
|---|---|---|---|---|
Β | Β | |||
Β | Β | |||
Β | Β | |||
Β | Β | |||
Β | Β | |||
Repository files navigation
π Web Application Vulnerability Scanner (Node.js) A lightweight backend-only vulnerability scanner built with Node.js. It scans target web applications for common vulnerabilities like Cross-Site Scripting (XSS) and SQL Injection (SQLi), then generates a JSON report. π Features β Detects XSS vulnerabilities with common payloads β Detects SQL Injection with test payloads β Automated scanning via CLI β Generates detailed scan-report.json β Simple & extensible design (easy to add new tests) π Project Structure vuln-scanner/ βββ package.json # Node project config βββ vulnerability-scanner.js # Main scanner script βββ scan-report.json # Auto-generated report (after scan) β‘ Installation Install Node.js (LTS recommended). Clone the repo: git clone https://github.com/your-username/vuln-scanner.git cd vuln-scanner Install dependencies: npm install axios π οΈ Usage Run the scanner on a target URL: node vulnerability-scanner.js http://example.com/search Output example (saved in scan-report.json): { "xss": [ { "payload": "<script>alert(1)</script>", "vulnerable": false } ], "sqli": [ { "payload": "' OR '1'='1", "vulnerable": true } ] } π Disclaimer This tool is for educational & ethical purposes only.β οΈ Do not scan websites without proper authorization.