miladrezanezhad/web-security-scanner-pro — explained in plain English
Analysis updated 2026-05-18
Run an authorized vulnerability scan on your own website before launch.
Check a site for SQL injection, XSS, and other common web vulnerabilities.
Generate an HTML or PDF security audit report for a client or team.
Test whether a site's security headers and SSL configuration are properly set up.
| miladrezanezhad/web-security-scanner-pro | bytedance-seed/cola-dlm | chris0214/mikumikuphysics | |
|---|---|---|---|
| Stars | 35 | 35 | 35 |
| Language | Python | Python | Python |
| Setup difficulty | easy | hard | moderate |
| Complexity | 3/5 | 4/5 | 3/5 |
| Audience | developer | researcher | designer |
Figures from each repo's GitHub metadata at analysis time.
Requires written authorization before scanning any site you do not own.
Web Security Analyzer Pro is a free, open-source command-line tool that scans websites for security vulnerabilities. You point it at a URL and it runs up to 49 different security checks, looking for things like SQL injection flaws (where an attacker could manipulate a database through a website form), cross-site scripting vulnerabilities (where malicious code could be injected into a page), misconfigured SSL certificates, missing security headers, outdated software with known weaknesses, and insecure API endpoints. It also checks for vulnerabilities specific to popular content management systems and control panels. A built-in evasion engine helps the scanner avoid being blocked by web application firewalls during authorized testing, using techniques like rotating browser identities and adding random delays. Results can be exported as HTML, PDF, Markdown, or JSON reports with severity ratings. The tool is aimed at security professionals and website owners who want to audit their own systems or conduct authorized penetration tests. It is written in Python and requires version 3.9 or newer. Using it against websites you do not own or have explicit permission to test is illegal.
A command-line scanner that checks websites for 49 kinds of security vulnerabilities, for use only on sites you own or are authorized to test.
Mainly Python. The stack also includes Python, SQLite.
MIT licensed: use freely for any purpose, including commercial use, as long as you keep the copyright notice.
Setup difficulty is rated easy, with roughly 5min to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.