Aakash-sudo-max/WEB-APPLICATION-VULNERABILITY-SCANNER-Task-2

COMPANY : CODE IT SOLUTIONS NAME : SANGABATTUNI AAKASH INTERN ID : CTIS8970 DOMAIN : CYBERSECURITY AND ETHICAL HACKING DURATION : 8 WEEKS INTERNSHIP PERIOD : 17 May 2026 - 12 July 2026 MENTOR : Neela Santhosh Kumar #WEB APPLICATIONVULNERABILITYSCANNER A TOOL TO IDENTIFY COMMONVULNERABILITIES (E.G., SQL INJECTION,XSS) IN WEB APPLICATIONS. A PYTHON-BASEDSCANNER USING LIBRARIES LIKEREQUESTS AND BEAUTIFULSOUP 🔐 Web Vulnerability Scanner A Python tool to scan websites for common vulnerabilities such as SQL Injection and Cross‑Site Scripting (XSS). It also detects and lists HTML forms for manual testing. 🚀 Features : Detects SQL Injection vulnerabilities using a simple payload. Detects XSS (Cross‑Site Scripting) vulnerabilities with a test script. Finds and lists all

elements on a webpage. Provides clear console output with vulnerability status. 🛠️ How It Works : SQL Injection Test Appends a payload (' OR '1'='1) to the URL parameter. Checks if the response contains SQL error messages. XSS Test Injects a JavaScript payload () into the query parameter. Verifies if the payload is reflected in the response. Form Detection Uses BeautifulSoup to parse the HTML. Lists all forms found for manual security testing. Reporting Prints results in the console with clear labels: [VULNERABLE] → Potential issue detected [SECURE] → No vulnerability found [ERROR] → Request failed 📦 Requirements Python 3.7+ Install dependencies ⚠️ Notes This tool is for educational and testing purposes only. Do not use it on websites without explicit permission (ethical hacking rules apply). OUT-PUT: