Version 0.03
A Python GUI application for scanning websites for their frameworks and detecting vulnerabilities off them.
- Install and upgrade virtualenv if not already done by executing
pip3 install virtualenv --user - Clone the repository on your local drive and make it your current working directory.
- Create a virtual environment by executing
virtualenv venv - Activate the virtual environment by executing
source venv/bin/activate - Install all dependencies for the project by executing
pip3 install -r requirements.txt - Run the project by executing
python3 fwvulgui.py - Scan URLs for framework one-by-one by typing them in the textbox.
- Scan URLs for framework in a batch by indicating a text file storing them linewise.
- When done tinkering, deactivate the virtual environment by executing
deactivate - Give stars to the repository if it was helpful
- Build GUI and prototype UX for loopholes
- Add scanning function for single URL through text entry
- Add scanning function for multiple URLs through file reading
- Add timer function to note the duration for scanning
- List down all tracked frameworks
- Add clear button for all line edit boxes
- Add file picker module for text files
- Add scrapped data about vulnerabilities
- List down vulnerabilities for all tracked frameworks
- Make miscellaneous bug fixes
- Initial build
- Built a robust GUI and checked loopholes
- Resolved dependencies on
data.json - Added functionality to scan single URL
- Added functionality to scan multiple URLs
- Added timer function for scan time calculation
- Handled exception where URLs could not be found
- Added warning messages
- Switched fontface to improve legibility
- Added clear button for all line edit boxes
- Added message for timing and scan success
- Added branched dictionary for multiple URLs
To be decided
- Default window layout with no action (v0.03 onwards)
- Single URL scan for framework detection (Results from
t0xic0der.netlify.com) (v0.03 onwards)
- Multiple URL scan through batch file input (v0.03 onwards)
- Scanning some URLs might take very long
- Some domains have abstracted frameworks so a scan results nothing