salim-ak09/D-Bad-Tester

# D-Bad-Tester (TBS) Security Intelligence Platform **Created and maintained by: Mr.Salim** **D-Bad-Tester (Total Black-box Security)** is an elite, all-in-one penetration testing and DevSecOps suite designed to provide comprehensive security audits. It brings together SAST, DAST, Secrets Detection, Infrastructure as Code scanning, OSINT attack surface mapping, and Custom Malware Threat Intelligence into a beautifully designed professional web dashboard. ## ⚡ Features - **Full Arsenal Scanning**: Runs Dependency checks, SAST, Secret Scanning, IaC, and DAST simultaneously via multi-threading. - **Elite Dashboard**: A gorgeous, interactive, real-time Web Dashboard that streams live scan logs and displays vulnerability severity distributions in real-time. - **Custom YARA Threat Intel**: Define custom threat signatures to detect bespoke internal threat models and malware. - **AI Triage**: Uses AI to automatically filter out false positives during code scans. - **CI/CD Pipeline Generator**: Instantly generate GitHub Actions (`dbt-scan.yml`) and GitLab CI pipelines to embed D-Bad-Tester directly into your DevSecOps workflow. ## 🏗️ Architecture C:\web_sec\ ├── dbt.py # Main Entry Point & Interactive CLI Orchestrator ├── launchers\ # Bootstrappers and Scripts │ ├── security_audit.bat # Admin Elevator Menu (Strong/Light Mode) │ └── security_audit.ps1 # Lightweight PowerShell Scanner ├── core\ # Core Security Engines │ ├── engines.py # Auto-downloader for 3rd-party tools │ ├── scanner.py # The multi-threaded orchestrator │ ├── yara_engine.py # Custom regex/YARA rules engine │ └── ai.py # AI triage engine ├── web\ # Web Dashboard & API │ ├── server.py # Flask Backend & SSE Log Streaming │ └── templates\ # Dashboard UI └── pentesting\ # Output directory for exported reports ## 🚀 Installation & Usage 1. **Clone the Repository** 2. **Run the Launcher** Execute `launchers\security_audit.bat` - It will automatically request Administrator privileges. Alternatively, you can run the Python script directly: python dbt.py ### A-Z Operations Manual Run `python dbt.py help` to view the comprehensive CLI manual: - `python dbt.py scan ` - Run full security scan on a target path. - `python dbt.py web` - Launch the dashboard on port 3000. - `python dbt.py ci` - Generate DevSecOps pipelines. ## 🛡️ License & Security Developed by **Mr.Salim**. Please refer to the `LICENSE` and `SECURITY.md` files for more information.