🛡️ Advanced Vulnerability Scanner - Flask Edition

A comprehensive, enterprise-grade vulnerability scanning platform with AI/ML-powered payload generation, zero-day detection, and threat intelligence integration.

🌟 Features

Core Capabilities

🔍 Network Scanning: Port scanning, service detection, OS fingerprinting
🎯 Vulnerability Detection: OWASP Top 10, CVE database integration
🤖 AI/ML Payload Generation: 15+ advanced algorithms for sophisticated attack simulation
🚨 Zero-Day Detection: Pattern-based and behavioral anomaly detection
📊 Threat Intelligence: Integration with 6+ threat intel feeds
📈 Real-time Dashboard: Live scanning status and vulnerability tracking
📝 Comprehensive Reports: PDF/JSON/CSV export capabilities
👥 Multi-user Support: Role-based access control
🔐 Secure Architecture: Session management, authentication, and authorization

Advanced Features

1. AI/ML-Powered Payload Generation 🧠

15 Algorithms:
- Deep Neural Networks with Backpropagation
- Multi-Objective Genetic Algorithms
- Deep Q-Learning with Experience Replay
- Enhanced Particle Swarm Optimization
- Adversarial Training (GAN-style)
- Transformer-based Sequence Generation
- LSTM Neural Networks
- Simulated Annealing
- Ant Colony Optimization
- Bayesian Optimization
- Actor-Critic Reinforcement Learning
- Metamorphic Payload Generation
- Steganographic Encoding
- Adversarial ML Resistance
- Real-time Adaptive Learning

2. Zero-Day Detection Module 🎯

Pattern-based vulnerability detection
Behavioral anomaly analysis
Time-based blind detection
Response correlation analysis
Active exploit detection (Log4Shell, Spring4Shell, ShellShock)

3. Threat Intelligence Integration 🌐

CVE feed integration
Exploit database correlation
IOC (Indicators of Compromise) matching
Real-time threat updates

4. OWASP Top 10 Coverage ✅

SQL Injection
Cross-Site Scripting (XSS)
Command Injection
Path Traversal
Template Injection
XML External Entity (XXE)
Deserialization Attacks
LDAP Injection
NoSQL Injection
SSRF (Server-Side Request Forgery)

🚀 Quick Start

Prerequisites

Python 3.11+
Redis Server
Git

Installation

Clone the repository

git clone https://github.com/faroq45/vuln-scanner-flask.git
cd vuln-scanner-flask

Create virtual environment

python -m venv env

# Windows
env\Scripts\activate

# Linux/Mac
source env/bin/activate

Install dependencies

pip install -r requirements.txt

Install additional WSGI server (optional)

# For Windows
pip install waitress

# For Linux/Unix
pip install gunicorn

Start Redis

# Windows (if installed as service)
net start redis

# Linux/Mac
redis-server

Run the application

Development Mode:

python main.py

Production Mode (Windows):

python run_waitress.py
# or
start_production.bat

Production Mode (Linux/Unix):

gunicorn -c gunicorn_config.py wsgi:application

Access the application

http://localhost:8080

📖 Documentation

🏗️ Architecture

vuln-scanner-flask/
├── bin/                    # Background worker processes
│   ├── scanner.py         # Port and service scanner
│   ├── attacker.py        # Vulnerability exploitation
│   └── scheduler.py       # Scheduled scanning
├── core/                  # Core functionality
│   ├── database.py        # Database management (SQLite/PostgreSQL)
│   ├── redis.py          # Redis session management
│   ├── workers.py        # Worker thread management
│   ├── payload_generator_enhanced.py       # 8 AI/ML algorithms
│   ├── payload_generator_ultra_enhanced.py # 15+ advanced algorithms
│   ├── owasp_wrapper.py  # OWASP scanner integration
│   └── ...
├── rules/                 # Vulnerability detection rules
│   └── vulnerabilities/  # Individual rule modules
│       ├── rule_zeroday-detection.py
│       ├── rule_zeroday-intelligence.py
│       └── rule_advanced-payload-detection.py
├── views/                 # Web interface views
├── templates/            # HTML templates
├── static/               # Static assets (CSS, JS, images)
├── config.py            # Main configuration
├── config_zeroday.py    # Zero-day detection config
├── main.py              # Application entry point
├── wsgi.py              # WSGI entry point
└── requirements.txt     # Python dependencies

⚙️ Configuration

Basic Configuration (`config.py`)

# Web Server
WEB_HOST = '0.0.0.0'
WEB_PORT = 8080
WEB_DEBUG = False

# Redis
RDS_HOST = 'localhost'
RDS_PORT = 6379

# Database (PostgreSQL or SQLite)
DB_TYPE = 'postgresql'  # or 'sqlite'
DB_HOST = 'localhost'
DB_PORT = 5432
DB_NAME = 'vuln_scanner'
DB_USER = 'your_user'
DB_PASSWORD = 'your_password'

Zero-Day Detection (`config_zeroday.py`)

ZERODAY_ENABLED = True
ZERODAY_AGGRESSIVE_MODE = True
ZERODAY_MAX_PAYLOADS = 100
MACHINE_LEARNING_ENABLED = True

🎯 Usage

1. Create a User Account

Navigate to /signup
Create your account
Login at /login

2. Start a Scan

Go to Quick Scan or Assessment
Enter target IP range or URL
Configure scan options
Click Start Scan

3. Monitor Progress

View real-time progress in the dashboard
Check discovered assets
Review vulnerabilities as they're found

4. Generate Reports

Navigate to Reports
Select scan session
Export as PDF, JSON, or CSV

🔒 Security Features

✅ Session-based authentication
✅ Password hashing (bcrypt)
✅ SQL injection prevention
✅ XSS protection
✅ CSRF protection
✅ Rate limiting on login attempts
✅ Secure cookie handling
✅ Content Security Policy headers
✅ User activity logging

📊 Supported Vulnerability Types

Category	Tests
SQL Injection	Union-based, Boolean-based, Time-based, Error-based
XSS	Reflected, Stored, DOM-based
Command Injection	OS command, Code execution
Path Traversal	Directory traversal, File inclusion
Template Injection	SSTI (Jinja2, Smarty, etc.)
XXE	XML External Entity attacks
Deserialization	Pickle, YAML, JSON unsafe deserialization
Authentication	Weak passwords, Default credentials
Information Disclosure	Version disclosure, Debug info
Misconfigurations	Insecure headers, Missing patches

🧪 Testing

Run the test suite:

# All tests
pytest

# Specific test file
pytest test_advanced_payloads.py

# With coverage
pytest --cov=core --cov-report=html

🤝 Contributing

Contributions are welcome! Please follow these steps:

Fork the repository
Create a feature branch (git checkout -b feature/AmazingFeature)
Commit your changes (git commit -m 'Add some AmazingFeature')
Push to the branch (git push origin feature/AmazingFeature)
Open a Pull Request

📝 License

This project is licensed under the MIT License - see the LICENSE file for details.

⚠️ Disclaimer

FOR EDUCATIONAL AND AUTHORIZED TESTING PURPOSES ONLY

This tool is designed for security professionals and researchers to test their own systems or systems they have explicit permission to test. Unauthorized access to computer systems is illegal.

The developers assume no liability and are not responsible for any misuse or damage caused by this program. Use at your own risk.

🙏 Acknowledgments

Project Team

@faroq45 - Creator and lead developer
@obaidlone - Security features and vulnerability detection
@shahidwan - Infrastructure and deployment
@ASLAM1322 - Frontend and UI/UX

Special Thanks

OWASP for vulnerability classifications
Nmap for port scanning
Flask community for the excellent web framework
Redis for session management
All open-source contributors

For full contributor list, see CONTRIBUTORS.md

📧 Contact

Issues: GitHub Issues
Discussions: GitHub Discussions

🌟 Star History

Built with ❤️ by Security Researchers, for Security Researchers

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
.github/workflows		.github/workflows
bin		bin
core		core
db		db
images		images
install		install
models		models
rules		rules
scanner		scanner
static		static
templates		templates
tests		tests
views		views
views_api		views_api
.gitignore		.gitignore
.mailmap		.mailmap
ADVANCED_PAYLOADS_README.md		ADVANCED_PAYLOADS_README.md
Advanced_Vulnerability_Scanner_Presentation.pptx		Advanced_Vulnerability_Scanner_Presentation.pptx
COMPLETE_FIX_SUMMARY.md		COMPLETE_FIX_SUMMARY.md
CONTRIBUTORS.md		CONTRIBUTORS.md
DATABASE_FEATURES.md		DATABASE_FEATURES.md
DELETE_REPO_INSTRUCTIONS.md		DELETE_REPO_INSTRUCTIONS.md
DEPLOYMENT.md		DEPLOYMENT.md
LICENSE		LICENSE
ML_PAYLOAD_ALGORITHMS.md		ML_PAYLOAD_ALGORITHMS.md
PAYLOAD_GENERATOR_TEST_RESULTS.md		PAYLOAD_GENERATOR_TEST_RESULTS.md
QUICK_START_DATABASE.md		QUICK_START_DATABASE.md
README.md		README.md
README_VSCODE.md		README_VSCODE.md
SCANNER_FIX_SUMMARY.md		SCANNER_FIX_SUMMARY.md
SCANNER_USAGE_GUIDE.md		SCANNER_USAGE_GUIDE.md
TECHNICAL_DOCUMENTATION.md		TECHNICAL_DOCUMENTATION.md
VSCODE_INTEGRATION_SUMMARY.md		VSCODE_INTEGRATION_SUMMARY.md
WARP.md		WARP.md
attacker_verbose.py		attacker_verbose.py
comparison_dump.py		comparison_dump.py
comparison_result.txt		comparison_result.txt
comparison_result_full.json		comparison_result_full.json
config.py		config.py
config_sqlite.py		config_sqlite.py
config_zeroday.py		config_zeroday.py
create_logos.py		create_logos.py
create_project_zip.ps1		create_project_zip.ps1
create_vulscanner_logo.html		create_vulscanner_logo.html
db_inspect.py		db_inspect.py
deebug_checks.py		deebug_checks.py
generate_pdf_docs.py		generate_pdf_docs.py
gunicorn_config.py		gunicorn_config.py
init_database.py		init_database.py
main.py		main.py
mock_vulnerable_app.py		mock_vulnerable_app.py
payload_demo_results.json		payload_demo_results.json
payload_ultra_demo_results.json		payload_ultra_demo_results.json
pyproject.toml		pyproject.toml
remove_nerve_branding.py		remove_nerve_branding.py
requirements.txt		requirements.txt
rewrite_history.sh		rewrite_history.sh
run_waitress.py		run_waitress.py
scan_results.json		scan_results.json
set_dates.ps1		set_dates.ps1
setup.py		setup.py
setup_database.py		setup_database.py
setup_db.py		setup_db.py
setup_simple.py		setup_simple.py
setup_sqlite.py		setup_sqlite.py
start.sh		start.sh
start_production.bat		start_production.bat
test.txt		test.txt
test_advanced_payloads.py		test_advanced_payloads.py
test_mock_app.py		test_mock_app.py
test_owasp_scanner.py		test_owasp_scanner.py
test_redis.py		test_redis.py
test_scanner.py		test_scanner.py
test_ultra_enhanced_payloads.py		test_ultra_enhanced_payloads.py
test_vscode.py		test_vscode.py
test_vscode_integration.py		test_vscode_integration.py
test_zeroday.py		test_zeroday.py
tmp_debug_imports.py		tmp_debug_imports.py
tmp_demo_enrich.py		tmp_demo_enrich.py
tmp_run_store_vuln.py		tmp_run_store_vuln.py
ultra_enhanced_test_results_20251027_202631.json		ultra_enhanced_test_results_20251027_202631.json
ultra_enhanced_test_results_20251027_203610.json		ultra_enhanced_test_results_20251027_203610.json
ultra_enhanced_test_results_20251027_205347.json		ultra_enhanced_test_results_20251027_205347.json
update_branding.py		update_branding.py
update_to_vulscanner.py		update_to_vulscanner.py
verify_branding.py		verify_branding.py
verify_vulscanner.py		verify_vulscanner.py
version.py		version.py
vulscanner.code-workspace		vulscanner.code-workspace
workers_debug.py		workers_debug.py
wsgi.py		wsgi.py

Folders and files

Latest commit

History

Repository files navigation

🛡️ Advanced Vulnerability Scanner - Flask Edition

🌟 Features

Core Capabilities

Advanced Features

1. AI/ML-Powered Payload Generation 🧠

2. Zero-Day Detection Module 🎯

3. Threat Intelligence Integration 🌐

4. OWASP Top 10 Coverage ✅

🚀 Quick Start

Prerequisites

Installation

📖 Documentation

🏗️ Architecture

⚙️ Configuration

Basic Configuration (config.py)

Zero-Day Detection (config_zeroday.py)

🎯 Usage

1. Create a User Account

2. Start a Scan

3. Monitor Progress

4. Generate Reports

🔒 Security Features

📊 Supported Vulnerability Types

🧪 Testing

🤝 Contributing

📝 License

⚠️ Disclaimer

🙏 Acknowledgments

Project Team

Special Thanks

📧 Contact

🌟 Star History

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Basic Configuration (`config.py`)

Zero-Day Detection (`config_zeroday.py`)

Packages