A Python script that scans websites for SQL Injection and XSS vulnerabilities by analyzing URLs from a configuration file and provides detailed detection results with remediation suggestions.
Se trata de um script Python que detecta vulnerabilidades de SQL Injection e XSS em sites. Ele analisa URLs listadas em um arquivo de configuração e fornece detalhes sobre a presença dessas falhas, incluindo sugestões de exploração e correção.urança e conscientização sobre boas práticas de desenvolvimento seguro.
This tool is designed for security professionals and developers who want to identify and understand SQL Injection and Cross-Site Scripting vulnerabilities in web applications. It automates the scanning of multiple URLs and offers actionable insights to improve web security and development practices.
Use this tool only on websites for which you have explicit permission to perform security testing to avoid legal and ethical issues. The script serves as a foundational scanner and can be extended to include additional vulnerability types and scanning techniques.
Ensure Python 3.12.5 is installed
Install required Python libraries: requests, logging, json
Place the script `XSS_SQLinjection_Scanner.py` and `config.json` in the same directory
Edit `config.json` to include the URLs you want to scanpython XSS_SQLinjection_Scanner.py
Runs the vulnerability scanner using URLs defined in the config.json file and outputs detailed vulnerability reports to the console