AegisScan is a Python-based automated web penetration testing framework designed to detect common web vulnerabilities from the OWASP Top 10.
- SQL Injection Scanner
- Cross-Site Scripting (XSS) Detection
- CSRF Misconfiguration Detection
- Cookie Security Analyzer
- SSL/TLS Security Checker
- Security Header Analysis
- Directory Enumeration
- Subdomain Discovery
- HTML Report Generation
web_pentest_framework │ ├── aegisscan.py ├── requirements.txt ├── Dockerfile │ ├── core │ ├── scanner.py │ └── reporter.py │ ├── modules │ ├── sqli.py │ ├── xss.py │ ├── csrf.py │ ├── cookies.py │ └── sslcheck.py │ ├── reports └── wordlists
Clone the repository:
git clone https://github.com/YOURUSERNAME/aegisscan-web-scanner.git
Install dependencies:
pip install -r requirements.txt
Run the scanner:
python aegisscan.py -u http://example.com
Example:
python aegisscan.py -u http://testphp.vulnweb.com
Build the image
docker build -t aegisscan .Run the scanner
docker run aegisscan -u http://example.com[SQLi] Scanning for SQL Injection
[XSS] Scanning for XSS
[CSRF] Checking forms
[COOKIE] Analyzing cookies
[SSL] Checking SSL configuration
Report saved: reports/report.html
- Python
- Requests
- BeautifulSoup
- Docker
- Security Automation
This project is for educational purposes and authorized security testing only.
Do not scan systems without permission.