GithubHelp home page GithubHelp logo

ycc1746582381 / yawss Goto Github PK

View Code? Open in Web Editor NEW
0.0 1.0 0.0 856 KB

Yet Another Web Security Scanner | A Web Application Security Scanner Written in Python.

License: GNU General Public License v3.0

Python 71.73% CSS 5.91% JavaScript 12.36% HTML 10.00%

yawss's Introduction

YAWSS

Yet Another Web Security Scanner - A Web Application Security Scanner Written in Python.

GitHub issues GitHub forks GitHub stars GitHub license

Objectives

Facilitate the automated security scans and web applications tests and make them possible to done with simple YAML configuration files.

Features

  • Perform scan by modules created by the user.
  • Crawl the website and save all necessery data.
  • CLI and Web User Interface options.
  • Scan configs can be written with YAML.
  • Basic Secuirty information will be enough to use and test any web application.
  • Support testing by raw request as an input.

Version

0.1.0 BETA

[(public releases).(beta versions).(bugfixes patches)]

Installation

For installing the required libraries

$ pip install -r requirements

And it's ready.

Usage

➜ python3 YAWSS.py -s [SCAN_CONFIG_PATH]
➜ python3 YAWSS.py -s [SCAN_CONFIG_PATH] -m  [MODULE1_NAME],[MODULE2_NAME]
➜ python3 YAWSS.py -ui web

For start a scan first you have to create a scan config file check the template file in 'scans' folder.

Modules have to be in modules folder for creating a new module please check the template file in 'modules' folder.

Screenshots

Development

Want to contribute? Great!

  • Fork it!
  • Create your feature branch: git checkout -b my-new-branch
  • Commit your changes: git commit -m 'Add some feature'
  • Push to the branch: git push origin my-new-branch
  • Submit a pull request.

Note: Any pull request will require to change the project main design will not approved until the next version.

Todo's

  • Implement the check attack type
  • Use multi-threading in the analyze engine.
  • Develop a report generator to generate a professional report.
  • Use database for saving the projects details to optimize the RAM usage.
  • Add login page.
  • Write many new modules.

License

All project files are licensed under GPL v3 - please check the LICENSE file for more information.

Bootstrap and Chartjs javascript and css files are licensed under MIT license please check their official websites for more information.

 

 

 

Twitter

Bootstrap copyright

Copyright (c) 2011-2018 Twitter, Inc.

Copyright (c) 2011-2018 The Bootstrap Authors.

Chartsjs copyright

Copyright (c) 2018 Chart.js Contributors.

yawss's People

Contributors

0xihsn avatar

Watchers

James Cloos avatar

Forkers

zxc2007 securityigi

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.